Re: /bin/login VSX test fails when permissions are secure

To: rwhron@earthlink.net
Cc: lsb-test@linuxbase.org
Subject: Re: /bin/login VSX test fails when permissions are secure
From: Andrew Josey <ajosey@rdg.opengroup.org>
Date: Mon, 10 Dec 2001 16:12:11 GMT
Message-id: <[🔎] 1011210161211.ZM17280@skye.rdg.opengroup.org>
Reply-to: ajosey@opengroup.org (Andrew Josey)
In-reply-to: rwhron@earthlink.net's message as of Dec 10, 10:27am.
References: <20011210102753.A15800@earthlink.net>

Randy
(this is the LSB-FHS testset)
I have cc'd this to the lsb-test list for comment. This seems
sensible and a possible reason to waive the test, but perhaps there is a
need for users to be able to invoke login directly?
regards
Andrew


On Dec 10, 10:27am in "/bin/login VSX test ", rwhron@earthlink.net wrote:
>
> The current VSX test suite gives a FAIL result is /bin/login
> has permissions like:
>
> -rwx------    1 root     root        39736 Jul  5 04:23 /bin/login
>
> 520|0 17 4880 1 1|Reference 3.4-17 (A)
> 520|0 17 4880 1 2|The implementation provides an exec-able version of the
login
> 520|0 17 4880 1 3|utility in the /bin directory.
> 220|0 17 1 01:02:31|FAIL
>
> Usually /bin/login is executed by a getty, which runs as root.
>
> On page 304 in the book "Real World Linux Security - Intrusion Prevention,
> Detection and Recovery" (ISBN 0-13-028187-5) there is a warning in bold
> type:
>
> "Additionally, it is very important to prevent ordinary users from
> invoking /bin/login."
>
> --
> Randy Hron
>-- End of excerpt from rwhron@earthlink.net

Reply to:

Prev by Date: Re: Test cases that are possible candidates for a waiver
Next by Date: RE: /bin/login VSX test fails when permissions are secure
Previous by thread: Re: cuserid(buf)
Next by thread: RE: /bin/login VSX test fails when permissions are secure
Index(es):
- Date
- Thread