Date: Thu, 24 Oct 2002 06:16:30 -0700 (PDT) From: Annihilator <annihilator_sc@hotmail.com> To: freebsd-gnats-submit@FreeBSD.org Subject: conf/44433: Default permissions of some files under /etc Message-ID: <200210241316.g9ODGUex063347@www.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 44433 >Category: conf >Synopsis: Default permissions of some files under /etc >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Thu Oct 24 06:20:01 PDT 2002 >Closed-Date: >Last-Modified: >Originator: Annihilator >Release: >Organization: SawMan's Consortium >Environment: FreeBSD router.pilar 4.7-RELEASE FreeBSD 4.7-RELEASE #0: Sat Oct 12 01:02:55 CEST 2002 root@sarah.pilar:/usr/src/sys/compile/ROUTER i386 >Description: Default permissions on certain system configuration files in the /etc hierarchy are, in my opinion, too weak. Users have no need to access these files which, after all, contain configuration information that may be used against the system. The files are: ssh/sshd_config crontab exports ftpusers ipf.rules ipnat.rules ipsec.conf (not 100% sure about this one) newsyslog.conf nsmb.conf periodic.conf syslog.conf >How-To-Repeat: >Fix: 'chmod 600' the said files. >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200210241316.g9ODGUex063347>