[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#25847: general: Several security questions



Package: general
Version: N/A
Note that some of these might be (very) naive:

The log file /var/log/dpkg-mountable is world readable. It might be risky if
some of the configurations scripts asks for some password or like...

---

Is it ok that smail logs containg information about mail delivery are world
readable?

---

The mountpoints /cdrom and /floppy are set to g+wxs. However, I think that
the g+w flag is of no use here, as when a fstab entry with 'user' option
enabled is mounted, the access flags are changed and the mount point is
owned by respective user since then anyway. So the g+w just allows users in
the cdrom and floppy groups to store files on your root partition (when
/cdrom resp. /floppy is not mounted), which I don't consider useful.

I doubt that the g+s is of any use as well, and so is the setting of the
gids of these mountpoints to group cdrom resp. floppy.

---

Is it ok that anybody can use logger (resp. /dev/log) to fill all space in
/var/log?

---

Is it ok that anybody can write to /dev/console (resp. /dev/tty0)?
If not, makedev's devinfo is not ok.

---

Is it ok that currently unused (i.e., no one logged on at the moment, and
getty is waiting there) /dev/tty1-6 are chgrp dialout and chmod 0660? I
thought that dialout is for accessing the modem lines, i.e.,
/dev/ttyS0-4, and I would expect chgrp tty on tty1-6.

---

Is it ok that anybody can write anything to any
other tty (/dev/tty7-63) (fake log messages on /dev/tty8 come in mind) ?

---

Is there some deep purpose for vcs0-6 and vcsa0-6 (i.e., the used ones)
being chgrp sys while others vcs's and vcsa's are chgrp root?



-- System Information
Debian Release: 2.0
Kernel Version: Linux pandora 2.0.35 #1 Sat Aug 1 17:24:40 CEST 1998 i586 unknown


Reply to: