Re: Solaris /usr/bin/mailx exploit (SPARC)

From: Casper Dik (Casper.Dikat_private)
Date: Mon May 14 2001 - 01:24:10 PDT

Next message: Olaf Kirch: "Re: RH7.0: man local gid 15 (man) exploit"

Previous message: Ichinose Sayo: "Becky! 2.00.05 Buffer Overflow"
In reply to: Pablo Sor: "Solaris /usr/bin/mailx exploit (SPARC)"
Next in thread: Johann Klasek: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Reply: Johann Klasek: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Reply: Greg A. Woods: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Reply: Dan Astoorian: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I'm not sure why all of the Solaris mail programs are actually set-gid 
mail.

If you strip set-gid mail from /usr/bin/mail,, /usr/bin/mailx, 
/usr/SUNWale/bin/mailx, /usr/dt/bin/dtmail, /usr/dt/bin/dtmailpr,
/usr/openwin/bin/mailtool nothing should break.

(At least not if you /var/mail directory has the standard 1777 permissions)


By forcing a file permission of 600 on mailboxes, group mail should not
gain you anything.

Casper

Next message: Olaf Kirch: "Re: RH7.0: man local gid 15 (man) exploit"
Previous message: Ichinose Sayo: "Becky! 2.00.05 Buffer Overflow"
In reply to: Pablo Sor: "Solaris /usr/bin/mailx exploit (SPARC)"
Next in thread: Johann Klasek: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Reply: Johann Klasek: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Reply: Greg A. Woods: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Reply: Dan Astoorian: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue May 15 2001 - 00:38:23 PDT