Bugtraq mailing list archives

Re: bin ownership problem

From: perry () imsi com (Perry E. Metzger)
Date: Thu, 19 May 1994 07:21:04 -0400


Brian Parent says:

Ok, I'll expose my ignorance and ask, what is the specific vulnerability
of bin owned files?  I understand how it is a problem on NFS exported
files to insecure hosts, but what is the risk for files/dirs on a locally
non-exported file system?  What about groups, is bin a bad group also?


1) Someday, your file system might end up being exported.
2) On many systems, breaking bin is easier than breaking root.

Perry

Current thread:

Re: permissions, (continued)
- Re: permissions Casper Dik (May 17)
- Re: permissions Howard the Energizer (May 17)
  - Re: permissions Perry E. Metzger (May 17)
    - Re: permissions Howard the Energizer (May 17)
  - Re: permissions Bruce Gingery (May 17)
- Re: permissions Daniel Azuelos (May 17)
  - Re: permissions rik.harris () vifp monash edu au (May 18)
  - bin ownership problem Brian Parent (May 18)
    - Re: bin ownership problem jmc () gnu ai mit edu (May 18)
    - Re: bin ownership problem Casper Dik (May 19)
    - Re: bin ownership problem Perry E. Metzger (May 19)
    - Re: bin ownership problem Bruce Gingery (May 19)
- Re: permissions Evil Pete (May 17)
- Re: Re: permissions Pete Hartman (May 17)
- Re: permissions Brad Powell - Sun CIS (May 18)