Subject: misc/29173: This script find all world writeable elements of dangerous directories in a filesystem.
To: None <misc-bug-people@netbsd.org, gnats-admin@netbsd.org,>
From: None <tikhonoff@users.sourceforge.net>
List: netbsd-bugs
Date: 01/31/2005 17:06:00
>Number:         29173
>Category:       misc
>Synopsis:       This script find all world writeable elements of dangerous directories in a filesystem.
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    misc-bug-people
>State:          open
>Class:          support
>Submitter-Id:   net
>Arrival-Date:   Mon Jan 31 17:06:00 +0000 2005
>Originator:     Alexandr S. Tikhonoff
>Release:        NetBSD 1.6
>Organization:
ASTI
>Environment:
NetBSD 1.6 NetBSD 1.6 (GENERIC) #0: Sun Sep 8 19:43:40 UTC 2002   autobuild@tgm.daemon.org:/autobuild/i386/OBJ/autobuild/src/sys/arch/i386/compile/GENERIC i386
>Description:
This script find all world writeable elements of dangerous directories in a filesystem. Frequently there accumulate many "interest" objects  escape administrator's attention. Especially this problem may be enough sirrious in multi-user platform.
>How-To-Repeat:

>Fix:
--- Security	Tue Jan 25 04:41:09 2005
+++ SecurityEditer	Tue Jan 25 04:42:01 2005
@@ -911,3 +911,15 @@
 	fi
 fi
 
+#
+# Find all world writeable elements of dangerous directories in a filesystem. 
+#
+
+  echo "File permission errors "
+  date
+  find /bin -perm +0002 -print
+  find /sbin -perm +0002 -print
+  find /etc -perm +0002 -print
+  find /usr/bin -perm +0002 -print
+  find /usr/sbin -perm +0002 -print
+  find /root -perm +0002 -print