Bugtraq mailing list archives
Re: Solaris 2.6 and sockets
From: shadows () whitefang com (Thamer Al-Herbish)
Date: Sun, 5 Oct 1997 11:43:56 +0000
On Fri, 3 Oct 1997, Wojciech Tryc wrote:
I have noticed strange things happening under Solaris 2.6 (final release) Any Unix socket created by ANY application has permissions 4777!!!! ie: srwxrwxrwx 1 root root 0 Oct 3 21:22 mysql.sock Check out your /tmp directory :)
I brought up the issue on bugtraq a few months ago about Solaris' UNIX domain sockets. The permissions actually have no effect (atleast not on Solaris 2.5) so EVEN if you had mode 000 on them, people would still be able to connect and send arbritary data. This is not the case with most BSD variants out there. The solution was to create it under a directory with an executable permission only for yourself. I believe Mr.Dik had mailed me about that after my post. -- Thamer Al-Herbish shadows () whitefang com
Current thread:
- Solaris 2.6 and sockets Wojciech Tryc (Oct 03)
- Re: Solaris 2.6 and sockets Theo de Raadt (Oct 04)
- Re: Solaris 2.6 and sockets Casper Dik (Oct 06)
- Re: Solaris 2.6 and sockets Edsel Adap (Oct 06)
- KSR[T] Advisory #3: updatedb / crontabs KSR[T] (Oct 06)
- Re: Solaris 2.6 and sockets Casper Dik (Oct 06)
- Re: Solaris 2.6 and sockets Thamer Al-Herbish (Oct 05)
- <Possible follow-ups>
- Re: Solaris 2.6 and sockets Eivind Eklund (Oct 12)
- Re: Solaris 2.6 and sockets Theo de Raadt (Oct 04)