Re: crontab reports: ....

To: Dave Baker <dsb3@earthlink.net>
Cc: Bruno Van de Casteele <brunovdc@iname.com>, debian-user@lists.debian.org
Subject: Re: crontab reports: ....
From: Ben Collins <bcollins@debian.org>
Date: Sat, 9 Oct 1999 13:05:03 -0400
Message-id: <[🔎] 19991009130503.E28646@lappy.djj.state.va.us>
In-reply-to: <[🔎] Pine.LNX.3.96.991009115122.9156B-100000@sundance.eth>
References: <[🔎] 034001bf122f$d5d2fb40$0d70430a@puam.dhs.org> <[🔎] Pine.LNX.3.96.991009115122.9156B-100000@sundance.eth>

On Sat, Oct 09, 1999 at 11:54:41AM -0500, Dave Baker wrote:
> > > /etc/cron.daily/suidmanager:
> > > /usr/sbin/sendmail PERMISSION MISMATCH: was root.root 777 changed to root.root
> > 4755
> > >
> > 
> > this may sound stupid... but was does this error message means?
> > 
> 
> This means that suidmanager found a problem with the sendmail executable
> and fixed it.
> 
> Having permissions of 777 means that ANYONE can read/write/execute the
> program.  The problem is in the WRITE portion - anyone with access to your
> host can replace (or perhaps already has?) sendmail with their own
> version.

I'm sure that /usr/sbin/sendmail is a symlink to the real MTA, which is why
it keeps showing up (the symlink always has mode 777). This could be
considered a bug in suidmanager. IMO, the package should add the correct
file to suidmanager rather than setting the symlink (since the symlink might
point to another file altogether if the admin set's it up that way).

Ben

Reply to:

Follow-Ups:
- Re: crontab reports: ....
  - From: Brian Servis <servis@purdue.edu>

References:
- crontab reports: ....
  - From: "Bruno Van de Casteele" <bruno.vandecasteele@student.kuleuven.ac.be>
- Re: crontab reports: ....
  - From: Dave Baker <dsb3@earthlink.net>

Prev by Date: Re: crontab reports: ....
Next by Date: Re: APT strangeness
Previous by thread: Re: crontab reports: ....
Next by thread: Re: crontab reports: ....
Index(es):
- Date
- Thread