[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Re: security risk... is this normal?

Subject: [cobalt-users] Re: security risk... is this normal?
From: Bruce Timberlake <bruce@xxxxxxxxxx>
Date: Mon Mar 1 12:34:02 2004
Organization: BRTNet.org
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Do you have any examples?Uninstaller script only remove packages installed by RPM, so it is onlyrpm -e. What other DANGEROUS commands do they have? mv, rm?

Just thinking off the top of my head, but don't most (all?) of theuninstallers do a "self remove" of the .uninst and the .mdtlst fileswhen they are done executing, on the assumption that the precedingsteps went as planned?

If so, I guess it would be possible to run the uninstall script, havethe RPM removal fail, but the rm of the .uninst script work ok,leaving you with no uninstall script for the PKG. Not lifethreatening, but makes it difficult to remove a PKG for real...

Follow-Ups:
- Re: [cobalt-users] Re: security risk... is this normal?
  - From: Dmitry Alexeyev
- Re: [cobalt-users] Re: security risk... is this normal?
  - From: Jeff Lasman

References:
- [cobalt-users] raq550: starting clock...
  - From: > freitag lab. ag / nafroth
- Re: [cobalt-users] security risk... is this normal?
  - From: Dmitry Alexeyev
- Re: [cobalt-users] security risk... is this normal?
  - From: Greg Hewitt-Long
- Re: [cobalt-users] security risk... is this normal?
  - From: Dmitry Alexeyev

Prev by Date: Re: [cobalt-users] security risk... is this normal?
Next by Date: Re: [cobalt-users] raq4 | phpmyadmin errot
Previous by thread: Re: [cobalt-users] security risk... is this normal?
Next by thread: Re: [cobalt-users] Re: security risk... is this normal?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index