[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Insecure world writable files from XFS 1.0.1 ISO installer

To: Eric Sandeen <sandeen@sgi.com>
Subject: Re: Insecure world writable files from XFS 1.0.1 ISO installer
From: Keith Owens <kaos@melbourne.sgi.com>
Date: Fri, 03 Aug 2001 00:16:27 +1000
Cc: Simon Matter <simon.matter@ch.sauter-bc.com>, linux-xfs <linux-xfs@oss.sgi.com>
In-reply-to: Your message of "Thu, 02 Aug 2001 08:49:36 EST." <3B695A70.6C2D70FD@sgi.com>
Sender: owner-linux-xfs@oss.sgi.com

On Thu, 02 Aug 2001 08:49:36 -0500, 
Eric Sandeen <sandeen@sgi.com> wrote:
>Simon Matter wrote:
>> 
>> When installing from the ISO RH7.1-SGI-XFS-1.0.1, all system config
>> files and directories which are not part of an RPM are installed world
>> writeable (mode 666/777). 
>
>Which files, for example?  So this does NOT happen with either stock Red
>Hat or XFS 1.0?  Not sure what might be causing this...

Almost certainly the kernel bug introduced somewhere around 2.4.3 and
fixed in 2.4.7.  The default umask for kernel threads, including init
was incorrectly set to 000.  Stock RedHat init scripts have umask 022
at the start which hides the kernel bug.

Follow-Ups:
- Re: Insecure world writable files from XFS 1.0.1 ISO installer
  - From: Simon Matter <simon.matter@ch.sauter-bc.com>

References:
- Re: Insecure world writable files from XFS 1.0.1 ISO installer
  - From: Eric Sandeen <sandeen@sgi.com>

Prev by Date: Re: Insecure world writable files from XFS 1.0.1 ISO installer
Next by Date: Re: Insecure world writable files from XFS 1.0.1 ISO installer
Previous by thread: Re: Insecure world writable files from XFS 1.0.1 ISO installer
Next by thread: Re: Insecure world writable files from XFS 1.0.1 ISO installer
Index(es):
- Date
- Thread