Fwd: Re: 2.4 kernels - security hole?

To: debian-devel@lists.debian.org
Subject: Fwd: Re: 2.4 kernels - security hole?
From: dmaziuk@bmrb.wisc.edu (Dimitri Maziuk)
Date: Wed, 9 May 2001 13:16:27 -0500 (CDT)
Message-id: <[🔎] 20010509181627.67134FDB5@odyssey.bmrb.wisc.edu>
Reply-to: dmaziuk@bmrb.wisc.edu (Dimitri Maziuk)

Thought I forward this to -devel, just FYI.
It seems kernels >=2.4.3 start up with umask set to 000 instead of 022.

|>If I have understood the man pages, it looks as though the simplest
|>solution would be to use an initscript.
|
|Correct. I tested and implemented that solution today, and wonder why
|none of the common distributions (I'm with debian potato, colleagues
|checked SuSE and Slackware) do use an initscript.
|
|This /etc/initscript works for me:
|
|	umask 022
|	PATH=/bin:/sbin:/usr/bin:/usr/sbin
|	export PATH
|	eval exec "$4"
|
|To verify the umask change, and later verify the fix, put into /etc/inittab
|
|	xx:2:wait:/bin/touch /tmp/testfile
|
|Follow by "init Q", then look at the permissions of /tmp/testfile.

Dima

Reply to:

Prev by Date: Re: how can Euro symbol be displayed under X [4.0.3]?
Next by Date: Re: how can Euro symbol be displayed under X [4.0.3]?
Previous by thread: Re: virtual-package names, ladspa-host and ladspa-plugin
Next by thread: script for on-disk configuration file backup
Index(es):
- Date
- Thread