[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Cron vulnerable

To: linux-delhi@xxxxxxxxxxxxxxxxxxxxx, linux-india-help@xxxxxxxxxxxxxxxxxxxxx
Subject: Cron vulnerable
From: Raju Mathur <raju@xxxxxxxxxxxxxxx>
Date: Fri, 17 Nov 2000 12:18:42 +0530 (IST)
Reply-to: raju@xxxxxxxxxxxxxxx

Vixie Cron on many distributions is vulnerable to a local root
compromise attack.  Debian is definitely vulnerable, RedHat is not (to
this exploit, at least).  Please check if /var/spool/cron is
world-readable or not.  If it is, please chmod it to 700 to prevent
this exploit.

Regards,

-- Raju

Prev by Subject: Corel: "Full-speed ahead on Linux"
Next by Subject: A customized mail server...
Previous by thread: Re: Bootup Problem
Next by thread: SAMBA service have error
Index(es):
- Subject
- Thread