On Mon, Aug 11, 2003 at 07:55:25PM -0500, Ed Wilts wrote:
> On Mon, Aug 11, 2003 at 07:44:59PM -0500, Benjamin J. Weiss wrote:
> > Okay, thanks! Next question: I ran that find command from the root
> > directory, and found thirty executables with that suid bit set. Some I
> > can tell need it (s
On Tue, 2003-08-12 at 08:16, Benjamin J. Weiss wrote:
> On many of the INSTALL and README documents that come with source
> tarballs, they talk about compiling with 'make', then running 'make
> install' as root. I was scanning some security documents the other day,
> and something just hit me: S
On Mon, Aug 11, 2003 at 07:44:59PM -0500, Benjamin J. Weiss wrote:
> Okay, thanks! Next question: I ran that find command from the root
> directory, and found thirty executables with that suid bit set. Some I
> can tell need it (sudo, suexec), some I think I can just delete (rlogin,
> rsh, rcp),
On Mon, Aug 11, 2003 at 07:16:30PM -0500, Benjamin J. Weiss wrote:
> uestion, but I got to thinking...
>
> On many of the INSTALL and README documents that come with source
> tarballs, they talk about compiling with 'make', then running 'make
> install' as root. I was scanning some security docum
Okay, this may be a stupid question, but I got to thinking...
On many of the INSTALL and README documents that come with source
tarballs, they talk about compiling with 'make', then running 'make
install' as root. I was scanning some security documents the other day,
and something just hit me: S
On Mon, Aug 11, 2003 at 09:02:15PM -0400, Jeff Kinz wrote:
> > I run a regular rpmverify script to automatically go through every
> > installed package and e-mail a report. It's much less management than
> > tripwire (although not quite as effective). Let me know if you want the
> > script.
>
>
> > and something just hit me: Somewhere in those documents they were
> > talking about looking for files that had the suid bit set and that
were
> > owned by root.
> >
> > Now, I usually put my source files in /usr/local/src, so that I have
one
> > place to put them. And I su to root before I d
