Date: Thu, 14 Jul 2005 14:14:42 +0400 From: "Eygene A. Ryabinkin" <freebsd@rea.mbslab.kiae.ru> To: hackers@freebsd.org Subject: /etc/opiekeys permissions? Message-ID: <20050714101442.GI16608@rea.mbslab.kiae.ru>
next in thread | raw e-mail | index | archive | help
Good day. Playing with OPIE I've noticed that the /etc/opiekeys have mode 644. As I remember there was a vulnurability related to this permissions for S/Key. But at that times that file was named /etc/skeykeys and it was created with permissions 600, so FreeBSD was not vulnerable to the disctionary attack. But now it seems to be vulnurable again. Are there any programs that are run in non-root mode and they do want to use OPIE? If there is no such programs, why the permissions are so strange? -- rea
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050714101442.GI16608>