[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: FIX: World-writeable files repair script

To: Keith Owens <kaos@melbourne.sgi.com>
Subject: Re: FIX: World-writeable files repair script
From: Eric Sandeen <sandeen@sgi.com>
Date: Thu, 02 Aug 2001 21:45:52 -0500
Cc: linux-xfs@oss.sgi.com
References: <11005.996798035@ocs3.ocs-net>
Sender: owner-linux-xfs@oss.sgi.com

Keith Owens wrote:
 
> Add  /lib/modules/*/modules.dep.  If that file is world writable you
> have a local root exploit.  Due to the kernel bug, this has occurred on
> Slackware installs.  As part of that exploit, people reported that
> /var/log/wtmp and /var/run/utmp are also created with the wrong mask.
> Not exploitable AFAIK but you can hide tasks if utmp is world writable.

modules.dep comes from the Red Hat kernel RPMs, and it doesn't appear to
be re-generated or modified during the install, so I think we're fine
here.

-Eric

-- 
Eric Sandeen      XFS for Linux     http://oss.sgi.com/projects/xfs
sandeen@sgi.com   SGI, Inc.

Follow-Ups:
- Re: FIX: World-writeable files repair script
  - From: Keith Owens <kaos@melbourne.sgi.com>

References:
- Re: FIX: World-writeable files repair script
  - From: Keith Owens <kaos@melbourne.sgi.com>

Prev by Date: TAKE - ppc/attr
Next by Date: Re: default ACL?
Previous by thread: Re: FIX: World-writeable files repair script
Next by thread: Re: FIX: World-writeable files repair script
Index(es):
- Date
- Thread