Bug#1766: Bug in script checksecurity in package cron

To: debian-bugs@Pixar.com
Subject: Bug#1766: Bug in script checksecurity in package cron
From: srivasta@pilgrim.umass.edu (Manoj Srivastava)
Date: 25 Oct 1995 21:26:52 -0400
Message-id: <[🔎] gvx68hd6nmr.fsf@plymouth.pilgrim.umass.edu>
Reply-to: srivasta@pilgrim.umass.edu (Manoj Srivastava), debian-bugs@Pixar.com

Package: cron
Version: 3.0pl1
Revision: 20

	I have a problem with the script checksecurity, which
 apparently come with cron. The problem is with the lines that
 generate the /var/log/setuid.today file (patch follows).

	Explanation: The mount | grep -v command is the problem for
 anyone who has more than one partitions mounted; the script actually
 tries to run find with multiple starting points (which is an error),
 like find dir1 dir2 dir3 -xdev ...  The solution is to look at all
 the directories discovered by the mount snippet and examine each in a
 for loop. (This has been one of my more incoherent explanations; feel
 free to mail me for clarifications).

	Also, I think one should exclude all mounted systems of type
 msdos (If nothing else, it save time).

	manoj

__> dpkg -S checksecurity
cron: /usr/sbin/checksecurity

> diff -u -B -b -w /usr/sbin/checksecurity.dist /usr/sbin/checksecurity
--- /usr/sbin/checksecurity.dist        Wed Sep 20 20:52:12 1995
+++ /usr/sbin/checksecurity     Thu Oct 19 11:05:23 1995
@@ -10,10 +10,9 @@

 umask 077
 cd /
-
-find `mount | grep -vE ' type (proc|iso9660) |^/dev/fd| on /mnt' | cut -d ' ' -f 3` \
-     -xdev \( -type f -perm +06000 -o -type b -o -type c \) -ls \
-  | sort >$TMP
+for dir in `mount | grep -vE ' type (proc|iso9660|msdos) |^/dev/fd| on /mnt' | cut -d ' ' -f 3`; do
+    /usr/bin/find $dir -xdev \( -type f -perm +06000 -o -type b -o -type c \) -ls ;
+done | sort >$TMP

 if ! cmp -s $LOG/setuid.today $TMP >/dev/null
 then




-- ...difference of opinion is advantageious in religion.  The several
 sects perform the office of a common censor morum over each other.
 Is uniformity attainable?  Millions of innocent men, women, and
 children, since the introduction of Christianity, have been burnt,
 tortured, fined, imprisoned; yet we have not advanced one inch
 towards uniformity. Thomas Jefferson, "Notes on Virginia"

Manoj Srivastava         Project Pilgrim, Department of Computer Science
Phone: (413) 545-3918             A143B Lederle Graduate Research Center
Fax: (413) 545-1249       University of Massachusetts, Amherst, MA 01003
email:srivasta@pilgrim.umass.edu http://www.pilgrim.umass.edu/~srivasta/

Reply to:

Prev by Date: Re: inverse of `adduser'?
Next by Date: Bug#1767: cern-httpd installation
Previous by thread: Re: FTP method for "dselect" needed
Next by thread: Bug#1766: Bug in script checksecurity in package cron
Index(es):
- Date
- Thread