Date: Fri, 21 Aug 1998 06:51:07 -0700 From: Cy Schubert - ITSD Open Systems Group <cschuber@uumail.gov.bc.ca> To: "Jordan K. Hubbard" <jkh@time.cdrom.com> Cc: security@FreeBSD.ORG Subject: Re: Scaring the bezeesus out of your system admin as a normal user: Message-ID: <199808211351.GAA08941@cwsys.cwsent.com> In-Reply-To: Your message of "Fri, 21 Aug 1998 00:02:54 PDT." <29367.903682974@time.cdrom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Open Systems Group Internet: cschuber@uumail.gov.bc.ca ITSD Cy.Schubert@gems8.gov.bc.ca Government of BC > % logger -p auth.notice -t su crackman to root on ttyp1 > > I'd suggest that /var/run/log should have 0600 permissions but that > would certainly screw over a few of syslog(3)'s current users. > > Hmmmm. No quick ideas here. :) Gene Spafford talks about a similar prank he did in college in his book Practical UNIX Security. Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Open Systems Group Internet: cschuber@uumail.gov.bc.ca ITSD Cy.Schubert@gems8.gov.bc.ca Government of BC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199808211351.GAA08941>