Subject: misc/29173: This script find all world writeable elements of dangerous directories in a filesystem.
To: None <misc-bug-people@netbsd.org, gnats-admin@netbsd.org,>
From: None <tikhonoff@users.sourceforge.net>
List: netbsd-bugs
Date: 01/31/2005 17:06:00
>Number: 29173
>Category: misc
>Synopsis: This script find all world writeable elements of dangerous directories in a filesystem.
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: misc-bug-people
>State: open
>Class: support
>Submitter-Id: net
>Arrival-Date: Mon Jan 31 17:06:00 +0000 2005
>Originator: Alexandr S. Tikhonoff
>Release: NetBSD 1.6
>Organization:
ASTI
>Environment:
NetBSD 1.6 NetBSD 1.6 (GENERIC) #0: Sun Sep 8 19:43:40 UTC 2002 autobuild@tgm.daemon.org:/autobuild/i386/OBJ/autobuild/src/sys/arch/i386/compile/GENERIC i386
>Description:
This script find all world writeable elements of dangerous directories in a filesystem. Frequently there accumulate many "interest" objects escape administrator's attention. Especially this problem may be enough sirrious in multi-user platform.
>How-To-Repeat:
>Fix:
--- Security Tue Jan 25 04:41:09 2005
+++ SecurityEditer Tue Jan 25 04:42:01 2005
@@ -911,3 +911,15 @@
fi
fi
+#
+# Find all world writeable elements of dangerous directories in a filesystem.
+#
+
+ echo "File permission errors "
+ date
+ find /bin -perm +0002 -print
+ find /sbin -perm +0002 -print
+ find /etc -perm +0002 -print
+ find /usr/bin -perm +0002 -print
+ find /usr/sbin -perm +0002 -print
+ find /root -perm +0002 -print