Re: unneeded information in sudo

From: Randy Mclean (rmcleanat_private)
Date: Wed Jun 09 1999 - 12:12:53 PDT

Next message: csegat_private: "Re: ssh advirsory"

Previous message: Samuel Mikes: "unneeded information in sudo"
Maybe in reply to: Samuel Mikes: "unneeded information in sudo"
Next in thread: Emad El-Haraty: "Re: unneeded information in sudo"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Well I just verified it on FreeBSD. I guess sudo checks if a file exists
before it checks the sudoers list. The fact that sudo is suid, it dose have
access to check the entire system for files. It seems to me that this is a
SLIGHT bug. Even if someone wanted to find the contents of the directory
there would basically have to try file name at random or run a program to
try different letter combinations. In either case the system will send
messages to root  with the list of users who attempt to use sudo and who
aren’t privileged to use sudo. Also couldn’t you just change the
permissions on the files so normal user couldn't access the files anyhow?

At 09:23 PM 6/8/99 +0200, Bencsath Boldizsar wrote:
>Sudo (debian , v1.5.6p2-2) tells anyone if a file exists or not. It's not
>a very big problem, but when i set a directory _not_ accessible to anyone
>but root, I want to make sure, nobody knows what files are in it.
>Both executable and not executables- if there is no file: No such file or
>directory, if it exists: permission denied if not executable, You are not
>in sudoers if executable.
>
>
>> ls -la a
>total 4
>drwx------   2 root     root         1024 Jun  8 21:25 .
>drwx------   7 root     root         1024 Jun  8 21:22 ..
>-rwxr-xr-x   1 root     root         1363 Jun  8 21:23 doit
>> su - alias
>No directory, logging in with HOME=/
>$ /root/a/doit
>su: /root/a/doit: Permission denied
>$ /root/a/doit2
>su: /root/a/doit2: Permission denied
>$ sudo /root/a/doit
>alias is not in the sudoers file.  This incident will be reported.
>
>$ sudo /root/a/doit2
>sudo: /root/a/doit2: No such file or directory
>$ dpkg -l sudo
>...
>||/ Name            Version        Description
>+++-===============-==============-========================================
====
>ii  sudo            1.5.6p2-2      Provides limited super user privileges
>
>> chmod a-x /root/a/doit
>> su - alias
>No directory, logging in with HOME=/
>$ sudo /root/a/doit
>sudo: /root/a/doit: Permission denied
>$ sudo /root/a/doit2
>sudo: /root/a/doit2: No such file or directory
>
>
>boldi

--
Randy Mclean
Security/Network Administrator
rmcleanat_private

Next message: csegat_private: "Re: ssh advirsory"
Previous message: Samuel Mikes: "unneeded information in sudo"
Maybe in reply to: Samuel Mikes: "unneeded information in sudo"
Next in thread: Emad El-Haraty: "Re: unneeded information in sudo"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:48:43 PDT