-----BEGIN PGP SIGNED MESSAGE----- On Wed, 28 Nov 2001, Larry W. Cashdollar wrote: > > Is the pico binary typically distro'd as suid root as is listed in > > the above document? I can't imagine why it would need to be. Seems like > > a recipe for disaster. > > That can't be right. Its not on any of my boxes, and if it were it would > be a gaping security hole. That's what throws me. As listed at the top of the document in question (http://my.dreamwiz.com/hackingm/test.txt): [x82@xpl017elz /tmp]$ ls -la /usr/bin/pico -rwsr-xr-x 1 root root 160552 Jun 21 1999 /usr/bin/pico Something's not right in Mudville...(unless I'm decaffeinated and missed something). - -Jay ( ( _______ )) )) .-"There's always time for a good cup of coffee"-. >====<--. C|~~|C|~~| (>----- Jay D. Dyson -- jdysonat_private -----<) | = |-' `--' `--' `---------- Si vis pacem, para bellum. ----------' `------' -----BEGIN PGP SIGNATURE----- Version: 2.6.2 Comment: See http://www.treachery.net/~jdyson/ for current keys. iQCVAwUBPAU5OblDRyqRQ2a9AQFB2AP+I3jCJOJRVEMxE33cs9yQwsAGLEkkXnWz 1uT2rziuff+i9rvulL8EgWxnO+tlrn7hmGnVWwUlnkTNu19+Kpp0CtpB7am9XnAa SeChQCx/6CCyHtlIb2hTPi92ZodpgNEnS+XQZYyfdKpEcOkqP0pHfzul0Qq4Ib/U dm1Axe7sK+Q= =gKkp -----END PGP SIGNATURE-----
This archive was generated by hypermail 2b30 : Wed Nov 28 2001 - 13:13:47 PST