From owner-freebsd-questions Tue Jun 3 10:56:36 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA12413 for questions-outgoing; Tue, 3 Jun 1997 10:56:36 -0700 (PDT) Received: from horton.iaces.com (root@horton.iaces.com [204.147.87.98]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA12407 for ; Tue, 3 Jun 1997 10:56:32 -0700 (PDT) Received: (from proot@localhost) by horton.iaces.com (8.8.5/8.8.4) id MAA18425; Tue, 3 Jun 1997 12:56:05 -0500 (CDT) From: "Paul T. Root" Message-Id: <199706031756.MAA18425@horton.iaces.com> Subject: Re: Security problem with FreeBSD 2.2.1 default installation To: shovey@buffnet.net (Steve) Date: Tue, 3 Jun 1997 12:56:05 -0500 (CDT) Cc: perl@netmug.org, freebsd-questions@FreeBSD.ORG In-Reply-To: from Steve at "Jun 3, 97 08:18:55 am" X-Organization: !nterprise Networking Services - ACES X-Phone: (612) 663-1979 X-Fax: (612) 663-8030 X-Page: (800) SKY-PAGE PIN: 537-7270 X-Address: 200 S. 5th St., Suite 1100 X-Address: Minneapolis, MN 55402 X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-questions@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk In a previous message, Steve said: > > Delete it - you should not have a need for suidperl I use suidperl. This is a new problem. The CERT advisory came out May 29. Go ahead and delete it. Also, if you have installed perl5 you'll need to delete the perl5 setuid program in /usr/local/bin. If you need suidperl, you'll need to get Perl5.004 and compile it yourself. Paul. > On Mon, 2 Jun 1997, Michael Haro wrote: > > Hi, yesterday one of my users gained root access to my system. > > They did it by exploiting a bug in /usr/bin/sperl4* > > Why does FreeBSD ship with a security hole? Is this a new one that you didn't > > know about? How can I remedy the problem? Right now, I deleted the file from > > the server. I am new to FreeBSD and would like to know how to fix it. > > > > Thanks, > > Michael perl@netmug.org > > > > > -- You cannot achieve the impossible without attempting the absurd.