Re: world-readable shadow backups in SuSe 5.2

• Previous message: Peter van Dijk: "Re: klogd 1.3-22 buffer overflow"
• Maybe in reply to: HD Moore: "world-readable shadow backups in SuSe 5.2"
• Next in thread: xnec: "Re: world-readable shadow backups in SuSe 5.2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

AFAIK, RedHat does the right thing.

Andrew
--
  "The best thing about standards is that there are so many
   to choose from."
                                              -Anonymous
-------------------------------------------------------------
  Andrew Pitman                           MIS
  Unix System Administrator               Rowan University
-------------------------------------------------------------

On Tue, 10 Nov 1998, HD Moore wrote:

> <( problem )>
>
> The _first_ set of shadow backups created on SuSe 5.2 are world readable.
> This includes '/etc/shadow-' and the original root pass in
> '/etc/shadow.orig'.  I duplicated this on 3 different systems where I had
> just installed SuSe 5.2 with shadowed passwd support.
>
> <( fix )>
>
> The way to fix repair is to just delete all the backup copies and when they
> are re-created they have the right permissions.
>
> <( conclusion )>
>
> Is this an isolated incident with SuSe, or is it a problem inherent to
> shadow?  I know this isn't the first case I've seen default shadow backups
> being world readable (or shadow.tmp's on SunOs).  Could some other package
> be responsible for changing permissions on these?
>

• Next message: Alan Cox: "Re: [Fwd: NOTE: Solaris 7 gotcha for some ultras]"
• Previous message: Peter van Dijk: "Re: klogd 1.3-22 buffer overflow"
• Maybe in reply to: HD Moore: "world-readable shadow backups in SuSe 5.2"
• Next in thread: xnec: "Re: world-readable shadow backups in SuSe 5.2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:22:55 PDT