[3045] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: admintool (was Re: Zolaris 2.5 Exploited.)

daemon@ATHENA.MIT.EDU (Aleph One)
Sun Aug 4 04:46:11 1996

Date: 	Sun, 4 Aug 1996 00:19:20 -0700
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: Aleph One <aleph1@underground.org>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>

From: Casper Dik <casper@holland.Sun.COM>

>
>I believe the "vold" hole requires you to have physical access to the
>machine, to insert a cdrom into the caddy. Bad anyway...

You can close the security hole not only by disabling vold but
also by just disabling the filemgr actions to vol manager.

To that end, edit /etc/rmmount.conf and comment out the "action_filemgr.so.1"
lines.

Casper


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[3045] in bugtraq

Re: admintool (was Re: Zolaris 2.5 Exploited.)

daemon@ATHENA.MIT.EDU (Aleph One)Sun Aug 4 04:46:11 1996

daemon@ATHENA.MIT.EDU (Aleph One)
Sun Aug 4 04:46:11 1996