Re: Checking setuid files

From: Michael Knudsen (none@e--molioner.dk.lh.bsd-dk.dk)
Date: Fri 05 Mar 2004 - 12:47:04 CET

Next message: Carsten Jonstrup: "fstab"
Previous message: Morten Winther: "Checking setuid files"
In reply to: Morten Winther: "Checking setuid files"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Date: Fri, 5 Mar 2004 12:47:04 +0100
From: Michael Knudsen <none@e--molioner.dk.lh.bsd-dk.dk>
To: bsd-dk@bsd-dk.dk
Subject: Re: Checking setuid files

Quoting Morten Winther (freebsd@mwi.dk):
> Hvad betyder følgende i security run output:

Konkret er outputtet vist en context diff mellem gaarsdagens
find-suid-root-scripts output og dagens ditto -- personligt finder jeg
unidiff lettere at laese.

> Skal jeg være nervøs eller er det normalt lige efter en cvs upgrade til 4.9
> p3?

Umiddelbart ser det ud som om, at der faerre binaries suid root. Det
lyder vel rimeligt nok, at man har fjernet et par stykker. Jeg ville
ikke vaere nervoes.

Hvis du vil vaere Helt Sikker[tm], skal du have kryptografiske checksums
af binaries paa et ikke-skrivbart medie (e.g. en lukket CD), som du checker
filsystemet op imod.

Mvh. Michael.

-- 
There is no place I can go, there is no way I can hide.
It feels like it keeps coming from the inside.
-- (Nine Inch Nails, The Big Come Down)

Next message: Carsten Jonstrup: "fstab"
Previous message: Morten Winther: "Checking setuid files"
In reply to: Morten Winther: "Checking setuid files"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:37 CET