Re: [d-security] Re: root's home world readable

To: "Thomas Bushnell, BSG" <tb@becket.net>
Cc: Chris Francy <francyci@cnw.com>, "Noah L. Meyerhans" <frodo@morgul.net>, debian-security@lists.debian.org
Subject: Re: [d-security] Re: root's home world readable
From: Christian Hammers <ch@westend.com>
Date: Tue, 22 Jan 2002 00:30:00 +0100
Message-id: <[🔎] 20020121233000.GD28443@westend.com>
Mail-followup-to: Christian Hammers <ch@westend.com>, "Thomas Bushnell, BSG" <tb@becket.net>, Chris Francy <francyci@cnw.com>, "Noah L. Meyerhans" <frodo@morgul.net>, debian-security@lists.debian.org
In-reply-to: <[🔎] 87zo37uw4c.fsf@becket.becket.net>
References: <[🔎] 1011639243.479.11.camel@eimbox> <[🔎] 1011639243.479.11.camel@eimbox> <[🔎] 5.1.0.14.2.20020121132417.00a9cae8@pop.mail.yahoo.com> <[🔎] 87d703wf59.fsf@becket.becket.net> <[🔎] 20020121232028.GA28443@westend.com> <[🔎] 87zo37uw4c.fsf@becket.becket.net>

Hi

On Mon, Jan 21, 2002 at 03:23:15PM -0800, Thomas Bushnell, BSG wrote:
> If it's a way to get "the logs" to rotate, that sure sounds like a
> system-wide option.  If it's a root password to a system-wide
> database, then that's also a system-wide option.  
The password for the mysql root user is not property of the system wide
configuration as I can't force the user to change a file in /etc
every time they change the users password and, due to mysqls default to
use the mysql user of the same name as the system user you are logged in
it would be unconvinient for the user to have to log into mysql as
something other.

With "functionality" I not only meant log rotating but also shutting down
the server at upgrades and deinstalles as I don't want to just kill the
processes although last time I checked the code was the same.

So I end up with a debian specific user with shutdown/reload privileges 
that's created with a random (saved) password at installtime as the best
solution, or?

bye,

-christian-

P.S.: Further discussion via BTS (off topic here). thanks.

Reply to:

Follow-Ups:
- Re: [d-security] Re: root's home world readable
  - From: tb@becket.net (Thomas Bushnell, BSG)

References:
- root's home world readable
  - From: eim <eim@eimbox.org>
- Re: root's home world readable
  - From: Chris Francy <francyci@cnw.com>
- Re: root's home world readable
  - From: tb@becket.net (Thomas Bushnell, BSG)
- Re: [d-security] Re: root's home world readable
  - From: Christian Hammers <ch@westend.com>
- Re: [d-security] Re: root's home world readable
  - From: tb@becket.net (Thomas Bushnell, BSG)

Prev by Date: Local exploit in courier-mta package
Next by Date: Re: [d-security] Re: root's home world readable
Previous by thread: Re: [d-security] Re: root's home world readable
Next by thread: Re: [d-security] Re: root's home world readable
Index(es):
- Date
- Thread