Bug#25847: general: Several security questions
Package: general
Version: N/A
Note that some of these might be (very) naive:
The log file /var/log/dpkg-mountable is world readable. It might be risky if
some of the configurations scripts asks for some password or like...
---
Is it ok that smail logs containg information about mail delivery are world
readable?
---
The mountpoints /cdrom and /floppy are set to g+wxs. However, I think that
the g+w flag is of no use here, as when a fstab entry with 'user' option
enabled is mounted, the access flags are changed and the mount point is
owned by respective user since then anyway. So the g+w just allows users in
the cdrom and floppy groups to store files on your root partition (when
/cdrom resp. /floppy is not mounted), which I don't consider useful.
I doubt that the g+s is of any use as well, and so is the setting of the
gids of these mountpoints to group cdrom resp. floppy.
---
Is it ok that anybody can use logger (resp. /dev/log) to fill all space in
/var/log?
---
Is it ok that anybody can write to /dev/console (resp. /dev/tty0)?
If not, makedev's devinfo is not ok.
---
Is it ok that currently unused (i.e., no one logged on at the moment, and
getty is waiting there) /dev/tty1-6 are chgrp dialout and chmod 0660? I
thought that dialout is for accessing the modem lines, i.e.,
/dev/ttyS0-4, and I would expect chgrp tty on tty1-6.
---
Is it ok that anybody can write anything to any
other tty (/dev/tty7-63) (fake log messages on /dev/tty8 come in mind) ?
---
Is there some deep purpose for vcs0-6 and vcsa0-6 (i.e., the used ones)
being chgrp sys while others vcs's and vcsa's are chgrp root?
-- System Information
Debian Release: 2.0
Kernel Version: Linux pandora 2.0.35 #1 Sat Aug 1 17:24:40 CEST 1998 i586 unknown
Reply to: