[584] in bugtraq
Re: Re: Various Solaris 2.3 file permission problems
daemon@ATHENA.MIT.EDU (Pete Hartman)
Thu Jan 5 14:41:14 1995
Date: Thu, 5 Jan 95 09:48:43 -0600
From: Pete Hartman <pwh@bradley.bradley.edu>
To: bugtraq@fc.net
>> Various Solaris2.3, file permission problems
>[report itself is deleted]
>Very interesting information, however more important things were not
>mentioned:
> /tmp directory is writeable for "sys" group (root,bin,sys,adm are in
>sys group by default) (affected: Solaris 2.3 - 2.4)
> /usr/kvm/crash allows you to browse through kernel kvm (inherited sunos
>bug) (affected Solaris 2.3 - 2.4?)
These *are* trivial to fix.
For those who are asking "how?"
chmod 700 /usr/kvm/crash
chgrp 0 /tmp
