[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-developers] CMU Security problem [ /etc/shadow permissions ]

Subject: Re: [cobalt-developers] CMU Security problem [ /etc/shadow permissions ]
From: Jeff Bilicki <jeff@xxxxxxxxxxx>
Date: Wed Feb 13 11:35:50 2002
List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>

The patch command should be:
$ patch -p0 < shadowfix.patch

Jeff-

> While running cmuImport on RaQ 3, RaQ 4, and RaQXTR the permission of
> /etc/shadow are not properly restored.   This is a HUGE security problem
> since all user passwords are stored in this file.  If have run CMU on
> your RaQ please issue the following command as root:
> $ chmod 400 /etc/shadow

> The correct permissions of /etc/shadow should be:
> -r-------- 1 root root 561 Feb 11 10:35 /etc/shadow

> Fix for CMU security problem, as root do the following:
> $ wget ftp://ftp.cobaltnet.com/pub/users/jeffb/cmu/shadowfix.patch
> $ patch -p0 shadowfix.patch

> This fix will be included in next release of CMU.  This blunder is a
> mistake on my part and I would like to apologize to all CMU users for
> it.

Prev by Date: [cobalt-developers] Opinion on ASP
Next by Date: Re: [cobalt-developers] divide by zero in cobalt-gui...
Previous by thread: [cobalt-developers] CMU Security problem [ /etc/shadow permissions ]
Next by thread: [cobalt-developers] Installing xfs and Xvfb (for VisualRoute Server)

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index