Re: How do I start | stop a daemon under debian

To: "R. W. Rodolico" <rodo@dailydatainc.com>
Cc: debian-isp@lists.debian.org
Subject: Re: How do I start | stop a daemon under debian
From: Chester Hosey <chosey@webstation.net>
Date: Wed, 6 Sep 2000 12:39:17 -0400 (EDT)
Message-id: <[🔎] Pine.BSI.4.05L.10009061231070.22751-100000@web1.webstation.net>
In-reply-to: <[🔎] 200009061350.IAA12955@tully.dailydatainc.com>

On Wed, 6 Sep 2000, R. W. Rodolico wrote:

> mv /etc/init.d/mysql /etc/init.d/mysql.original
> echo #! /bin/bash > /etc/init.d/mysql
> chmod 777 /etc/init.d/mysql

Ouch, I hope you mean 755 or at least 775. Permissions 777 would allow any
user to write to the file. A user could simply watch for the creation of
such a file and modify it before you run the script - this is an easily
exploitable security hole.

-chet

-----
yet he has sorcery

Reply to:

References:
- Re: How do I start | stop a daemon under debian
  - From: "R. W. Rodolico" <rodo@dailydatainc.com>

Prev by Date: RE: rewrite and change document root on apache
Next by Date: hosts.deny
Previous by thread: Re: How do I start | stop a daemon under debian
Next by thread: X don't work
Index(es):
- Date
- Thread