Re: world-readable shadow backups in SuSe 5.2

From: Erik (netmaskat_private)
Date: Wed Nov 11 1998 - 10:15:20 PST

Next message: Wayne Schroeder: "Re: Xinetd /tmp race?"

Previous message: xnec: "Re: world-readable shadow backups in SuSe 5.2"
Maybe in reply to: HD Moore: "world-readable shadow backups in SuSe 5.2"
Next in thread: Roman Drahtmueller: "Re: world-readable shadow backups in SuSe 5.2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On a slackware 3.5 machine, with no backups... changing users password..
leaves

-rw-------   1 root     root          560 Nov 11 09:53 shadow-

chmod 600. So I would say its a suse linux problem.



On Tue, 10 Nov 1998, HD Moore wrote:

> <( conclusion )>
>
> Is this an isolated incident with SuSe, or is it a problem inherent to
> shadow?  I know this isn't the first case I've seen default shadow backups
> being world readable (or shadow.tmp's on SunOs).  Could some other package
> be responsible for changing permissions on these?
>



*---------------------*
| Erik Parker         |
| netmaskat_private     |
| IDC NetOps          |
*---------------------*
                 |
        *--------------------------------*
        |  http://www.303.org/           |
        |  ICQ # 9780056                 |
        |  talk netmaskat_private   |
        *--------------------------------*

Next message: Wayne Schroeder: "Re: Xinetd /tmp race?"
Previous message: xnec: "Re: world-readable shadow backups in SuSe 5.2"
Maybe in reply to: HD Moore: "world-readable shadow backups in SuSe 5.2"
Next in thread: Roman Drahtmueller: "Re: world-readable shadow backups in SuSe 5.2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:22:58 PDT