|
|
/var/crash permission
hi
just curious, my /var/crash directory is 777 mode. Can i set it to 700? or do
other users need to use this directory ? thanks....
|
|
0
|
|
|
|
Reply
|
 s99999999s2003
|
6/3/2004 9:38:05 AM |
|
mike wrote:
> just curious, my /var/crash directory is 777 mode. Can i set it to 700? or do
> other users need to use this directory ? thanks....
It's not installed that way.
If /var/crash is 777 then regular user could 'mkdir /var/crash/stuff' and
keep data there - not what you want.
If /var/crash/`uname -n` allows access to regular users (or really to any
vmcore.* files in there) then that's a security issue. Kernel crash dumps
(even if you don't set them to dump user pages too) can include information
that a user should not be able to see - eg if userA was writing some sensitive
file to disk as the system crashed then userB may be able to see some buffers
of that file in the crash dump.
Gavin
|
|
|
0
|
|
|
|
Reply
|
Gavin
|
6/3/2004 10:37:26 AM
|
|
In article <c9mv16$66q$1@new-usenet.uk.sun.com>,
Gavin Maltby <g_a_v_i_n.m_a_l_t_b_y@s_u_n.com> wrote:
>mike wrote:
>
>> just curious, my /var/crash directory is 777 mode. Can i set it to 700? or do
>> other users need to use this directory ? thanks....
>
>It's not installed that way.
>
>If /var/crash is 777 then regular user could 'mkdir /var/crash/stuff' and
>keep data there - not what you want.
>
>If /var/crash/`uname -n` allows access to regular users (or really to any
>vmcore.* files in there) then that's a security issue. Kernel crash dumps
>(even if you don't set them to dump user pages too) can include information
>that a user should not be able to see - eg if userA was writing some sensitive
>file to disk as the system crashed then userB may be able to see some buffers
>of that file in the crash dump.
>
>Gavin
On Solaris 8 /var/crash is installed as 755. If you have a crash, there
will be a subdirectory in /var/crash which is created mode 700.
--
Tom Schulz
schulz@adi.com
|
|
|
0
|
|
|
|
Reply
|
schulz
|
6/3/2004 1:34:35 PM
|
|
|
2 Replies
311 Views
(page loaded in 0.128 seconds)
Similiar Articles: /var/crash permission - comp.unix.solarishi just curious, my /var/crash directory is 777 mode. Can i set it to 700? or do other users need to use this directory ? thanks.... ... Compare group,user,permissions from two HD - comp.unix.shell .../var/crash permission - comp.unix.solaris If /var/crash is 777 then regular user could 'mkdir ... sudoers file? - comp.sys.mac.system /var/crash permission ... Running 49g libraries on 50g - comp.sys.hp48Then with the FILER (FILES), delete them from the ports and the HOME (VAR). ... /var/crash permission - comp.unix.solaris Running 49g libraries on 50g - comp.sys.hp48... Huge disk usage on /var/spool/clientmqueue - comp.unix.solaris .../var/crash permission - comp.unix.solaris Huge disk usage on /var/spool/clientmqueue - comp.unix.solaris ... /var/crash permission - comp.unix.solaris Huge disk usage on ... Can't connect to local MySQL server through socket '/var/mysql ...> mysql.default_socket =3D =A0/var/mysql/mysql.sock ... InnoDB: Starting crash recovery. InnoDB: Reading ... 64bit/data/janis-roughs- power-mac-g5.local.pid: Permission ... /var/crash permission - comp.unix.solaris | Computer Grouphi just curious, my /var/crash directory is 777 mode. Can i set it to 700? or do other users need to use this directory ? thanks.... ... ccm crash: /var/run/heartbeat/ccm/ccm Permission denied | Linux-HA ...On Jul 28, 2008, at 1:05 PM, Rainer Traut wrote: > Andrew Beekhof schrieb: >> On Jul 28, 2008, at 12:24 PM, Rainer Traut wrote: >>> sys: Centos 5 x86_64, 2 nodes 7/23/2012 9:08:10 AM
|
|
|
|
|
|
|
|
|
Search |
Post Question |
Groups |
Stream |
About |
Register
78 followers. 