Bugtraq mailing list archives
Re: Irix tape devices + logs + su
From: v13 () AETOS IT TEITHE GR (Harhalakis Stefanos)
Date: Sun, 20 Dec 1998 02:44:36 +0200
On Fri, 18 Dec 1998 Valdis.Kletnieks () VT EDU wrote:
On Thu, 17 Dec 1998 09:39:11 +0200, you said:entry in root's .cshrc)). So it is possible to have those devices with mode 644 or even 666, which is bad news, because anyone could use xfsrestore to get any file.Possibly an issue. Remember that they still need physical access to the tape and the tape drive. xfsrestore isn't set-UID, so a user can't extract files with a different owner unless they get root first. I'd worry more about someobdy doing an 'mt rewindoffline' to screw up a running tape job.
You can restore the files to a different location, than the original. xfsrestore will give you files like the shadow with pleasure. (It is as safe, as having the hard disk devices with o+rw permissions. :) An attacker needs to know, only the time you use to backup your / partition (any incremental level can be forced to backup /etc/shadow, by simply changing your password)
Valdis Kletnieks Computer Systems Senior Engineer Virginia Tech
<<V13>>
Current thread:
- Irix tape devices + logs + su Harhalakis Stefanos (Dec 16)
- DoS caused by lpd Kevin K. Sochacki (Dec 18)
- Re: Irix tape devices + logs + su Valdis.Kletnieks () VT EDU (Dec 18)
- Re: Irix tape devices + logs + su Harhalakis Stefanos (Dec 19)
- Re: Irix tape devices + logs + su Bas van der Vlies (Dec 20)