Date: 14 Jun 1999 12:29:14 +0200 From: Dag-Erling Smorgrav <des@flood.ping.uio.no> To: John <john@fiend.securesys.com.au> Cc: jschwab@royal.net (Jason L. Schwab), freebsd-questions@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: reading files. Message-ID: <xzpemjff539.fsf@flood.ping.uio.no> In-Reply-To: John's message of "Mon, 14 Jun 1999 21:17:02 %2B0930 (CST)" References: <199906141147.VAA06078@fiend.securesys.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
John <john@fiend.securesys.com.au> writes: > > I heard that there is a way to read any file on a freebsd system as a > > normal non-root user.. is this true? if so can some one give me some info > > on this? thanks. > > If the raw device file for the filesystem were world readable, > you could 'read' any file as a non-root user... This is academic, since raw disk devices are created with owner root, group operator and mode 640. You'd have to *make* the device nodes world-readable (or add everybody to group operator) for this to work. There is no known way for a normal user to read a file to which he or she does not normally have access without first gaining root privileges - either by somehow obtaining the root password or physical access to the console, or by exploiting a misconfiguration or a security hole in third-party software. (disclaimer: I am not a FreeBSD security officer) DES -- Dag-Erling Smorgrav - des@flood.ping.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzpemjff539.fsf>