[2403] in bugtraq
Re: SunOS syslog() fix, finally...
daemon@ATHENA.MIT.EDU (Brett Lymn)
Thu Nov 16 21:14:56 1995
Date: Tue, 14 Nov 1995 11:05:09 +1030
Reply-To: Bugtraq List <BUGTRAQ@CRIMELAB.COM>
From: Brett Lymn <blymn@awadi.com.au>
X-To: BUGTRAQ@CRIMELAB.COM
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@CRIMELAB.COM>
In-Reply-To: <Pine.SOL.3.91.951111011959.4019A-100000@matrix29> from "Jake
Luck" at Nov 11, 95 01:21:34 am
According to Jake Luck:
>
>yeah, but what about /usr/sbin/ufsrestore ?
>
>it is statically linked, utilizes syslog, and suid root.
>
If you are a BOFH then just kill the setuid bit on ufsrestore. It
means that root has to do the restores but it does close an awful lot
of holes (like someone dragging in a QIC and restoring their favourite
version of /etc/passwd.... need I say more?). Or you could just
remove the global rx though this may bugger up remote root users.
--
Brett Lymn, Computer Systems Administrator, AWA Defence Industries
===============================================================================
"It's fifteen hundred miles to Ankh-Morpork" he said. "We've got
three hundred and sixty three elephants, fifty carts of forage, the
monsoon's about to break and we're wearing ... we're wearing ... sort
of things, like glass, only dark... dark glass things on our eyes..."
- Terry Pratchett "Moving Pictures".
