Bugtraq mailing list archives

Re: Solaris patchadd(1) (3) symlink vulnerabilty

From: Paul Theodoropoulos <paul () ANASTROPHE COM>
Date: Thu, 21 Dec 2000 11:12:48 -0800

I do indeed stand corrected: The only 2 sollutions are:
1) change to single user mode by means of init S
   and rm -rf /tmp/* /tmp/.*
2) shutdown and boot -s into single user mode.



init 6 will work adequately; it's not necessary to power-down (init 5).
/tmp will be properly cleared on an init 6 (since it's normally in ram).


---------------------------------
Paul Theodoropoulos
paul () atgi net paul () anastrophe com
Senior Unix Systems Administrator
Advanced Telcom Group, Inc.
Santa Rosa, California
Work: http://www.callatg.com
Play: http://www.anastrophe.com
Downtime Is Not An Option

Current thread:

Re: Solaris patchadd(1) (3) symlink vulnerabilty, (continued)
- Re: Solaris patchadd(1) (3) symlink vulnerabilty Paul Szabo (Dec 19)
  - Re: Solaris patchadd(1) (3) symlink vulnerabilty Dan Harkless (Dec 20)
  - Re: Solaris patchadd(1) (3) symlink vulnerabilty Juergen P. Meier (Dec 20)
    - Re: Solaris patchadd(1) (3) symlink vulnerabilty Juan M. Courcoul (Dec 21)
    - Re: Solaris patchadd(1) (3) symlink vulnerabilty Cy Schubert - ITSD Open Systems Group (Dec 22)
- Re: Solaris patchadd(1) (3) symlink vulnerabilty Paul Szabo (Dec 20)
  - Re: Solaris patchadd(1) (3) symlink vulnerabilty Peter W (Dec 21)
    - Re: Solaris patchadd(1) (3) symlink vulnerabilty Juergen P. Meier (Dec 22)
  - Re: Solaris patchadd(1) (3) symlink vulnerabilty Juan M. Courcoul (Dec 21)
  - Re: Solaris patchadd(1) (3) symlink vulnerabilty Juergen P. Meier (Dec 21)
    - Re: Solaris patchadd(1) (3) symlink vulnerabilty Paul Theodoropoulos (Dec 21)
- Re: Solaris patchadd(1) (3) symlink vulnerabilty Jonathan Fortin (Dec 21)
- Re: Solaris patchadd(1) (3) symlink vulnerabilty Neulinger, Nathan R. (Dec 21)