From owner-freebsd-security Thu Jul 12 11: 7:41 2001 Delivered-To: freebsd-security@freebsd.org Received: from mta5.rcsntx.swbell.net (mta5.rcsntx.swbell.net [151.164.30.29]) by hub.freebsd.org (Postfix) with ESMTP id D071437B403 for ; Thu, 12 Jul 2001 11:07:36 -0700 (PDT) (envelope-from ryanpek@swbell.net) Received: from mhx800 ([64.219.216.69]) by mta5.rcsntx.swbell.net (Sun Internet Mail Server sims.3.5.2000.03.23.18.03.p10) with SMTP id <0GGD00BONGRWWW@mta5.rcsntx.swbell.net> for security@freebsd.org; Thu, 12 Jul 2001 13:02:20 -0500 (CDT) Date: Thu, 12 Jul 2001 13:03:47 -0500 From: Ryan Subject: FreeBSD 4.3 local root PREVENTIONS To: security@freebsd.org Message-id: <002401c10afc$ffcc9b00$45d8db40@mhx800> MIME-version: 1.0 X-Mailer: Microsoft Outlook Express 5.50.4522.1200 Content-type: text/plain; charset="iso-8859-1" Content-transfer-encoding: 7bit X-MSMail-Priority: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 References: <657B20E93E93D4118F9700D0B73CE3EA02FFEFB7@goofy.epylon.lan> <005701c10af9$bd7a7c20$0200000a@kilmarnock> X-Priority: 3 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org another extra thing you can do is set the permissions on /bin/ like I have everything in there chmod 111 which would prevent copying bash-2.05$ cp /bin/sh /tmp/ cp: /bin/sh: Permission denied So simple things like going into all the folders and chmod'n things is a very good idea for a lil extra security. along with copying /bin/sh to /tmp/ and chmod 0 /tmp/sh Ryan ryanpek@swbell.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message