[15200] in bugtraq
Re: bind running as root in Mandrake 7.0
daemon@ATHENA.MIT.EDU (White Vampire)
Sun Jun 4 23:19:54 2000
Mail-Followup-To: White Vampire <whitevampire@mindless.com>,
Nicolas MONNET <nico@MONNET.TO>, bugtraq@securityfocus.com
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
protocol="application/pgp-signature"; boundary="Qxx1br4bt0+wmkIi"
Content-Disposition: inline
Message-Id: <20000603223522.A27816@nirvana.projectgamma.com>
Date: Sat, 3 Jun 2000 22:35:23 -0400
Reply-To: whitevampire@mindless.com
From: White Vampire <whitevampire@MINDLESS.COM>
X-To: Nicolas MONNET <nico@MONNET.TO>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.4.21.0006031555490.8877-100000@linuxserver.it-xchange.com>; from nico@MONNET.TO on Sat, Jun 03,
2000 at 04:03:51PM +0200
--Qxx1br4bt0+wmkIi
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Sat, Jun 03, 2000 at 04:03:51PM +0200, Nicolas MONNET(nico@MONNET.TO) wr=
ote:
: bind is run as user / group 'root' in Mandrake 7.0, and probably in
: Redhat6.x as well. This is a surprising (if not stupid) setting given the
: fact that sploits exist that easily break out of any chroot jail in such a
: case; and that switching users is as easy as adding an option to
: named. Esp. given the infuriatingly poor security track record of named
: ...
:=20
: Indeed, here's a simple patch against /etc/rc.d/init.d/named that I
: strongly suggest applying. It does'nt seem to cause any problem for me.
:=20
: *** named.orig Sat Jun 3 15:55:00 2000
: --- named Fri Jun 2 22:04:10 2000
<snip>
This is a valid concern, although your fix is a bit
lacking. Anybody who is serious about security and wants to run a DNS
should take some basic security precautions. Those being, chroot jail,
and a 'named' user (or at least running as a non-root user).
Those interested in more information and some good proceedures
should read this
HOWTO: http://metalab.unc.edu/pub/Linux/docs/HOWTO/Chroot-BIND-HOWTO.
Regards,
--=20
__ ______ ____
/ \ / \ \ / / White Vampire\Rem
\ \/\/ /\ Y / http://www.projectgamma.com/
\ / \ / http://www.webfringe.com/
\__/\ / \___/ http://www.gammaforce.org/
\/ "Silly hacker, root is for administrators."
--Qxx1br4bt0+wmkIi
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE5OcBq3+rxmnEDyl8RAlKAAKCGIdU259mRVB8Sh6KK1+D8OJAeyQCgxwgu
0TF1ze9OIxmkTcA14TqzBNg=
=BMGZ
-----END PGP SIGNATURE-----
--Qxx1br4bt0+wmkIi--
