Re: Unable to su on firewall

On Wed, Apr 16, 2003 at 06:55:45PM +0200, Daniel Bergman wrote:
> Hi,
>
> I'm having huge problems switching user, using su utility, to a user named 'daniel' on my Solaris 8 x86 server.

While not directly related to your query, given this is a security based list....

Change daniel's password as you've included the crypt string and never set folks home dirs to /tmp - its a world writable directory and to compromise your machine its just a matter of getting a substitute .profile, .login, .forward, etc in there. Once a file that will be executed on system events (receipt of mail, login, etc) is created its just a matter of time before it gets executed. This allows any access to the firewall, even 'nobody' or other production 'unprivileged' accounts to start executing with user privs.

If you already knew all that, sorry ;) Dont suppose it hurts to reiterate though.

As for the chdir... what are the permissions on "/", the root directory?

> 739: setuid(3333) = 0
> 739: chdir("/tmp") Err#13 EACCES <-- Really strange, see below for /tmp listing.

Matt Received on Tue Apr 22 10:30:13 2003

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek