Date: Thu, 13 Apr 1995 15:19:37 +0100 (BST) From: Mr D Whitehead (Ext 2703) <davew@sees.bangor.ac.uk> To: freebsd-security@FreeBSD.org Subject: Broken find invalidates /etc/security Message-ID: <14679.9504131419@sol.sees.bangor.ac.uk>
next in thread | raw e-mail | index | archive | help
Strictly speaking this is a bug report, but as I found it while checking the /etc/security script for FreeBSD 2.0-950112-SNAP I thought it best to report it here. Description ----------- The the scan for suid files is only finding sgid files. The responsibility for this seems to lie with the -or operator to find. If you change the -or to -and the script will do what you expect ( but not what you want), if you remove the -or -perm -g+s then all suid files are found. Using the octal equivalents of 4000 and 2000 is no help. The evidence seems quite strong that the -or operator is broken. I have not checked with earlier or later versions but I suggest that an eyeball check of /var/log/setuid.today is done for all versions, if stuff like sendmail etc is not there then lots of people have a false sense of security. -- Dave Whitehead (Computer Support Staff) ------------------------------------------------------------------------------- EMAIL:- | TELEPHONE (work):- (work) davew@sees.bangor.ac.uk | +44 1248 382703 (Direct line) (home) 100023.1076@compuserve.com | +44 1248 351151 ext 2703 ------------------------------------------------------------------------------- SNAIL MAIL:- Dave Whitehead School of Electronic Engineering & Computer Systems, University College of North Wales, Dean Street, Bangor LL57 1UT ------------------------------------------------------------------------------
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?14679.9504131419>