Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
solaris tape dev permission stupidityjoshua grubman (jgFALSE.NET)
Wed, 21 Oct 1998 18:14:53 -0400
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Adrian Voinea: "SVGATextMode 1.8 /tmp race"
- Previous message: Themag00ru: "Netscape Communicator 4.07 - Prefs.js Reset"
- Next in thread: Darren J Moffat - Enterprise Services OS Product Support Group: "Re: solaris tape dev permission stupidity"
hi, this is rather silly and obvious, but i couldn't find anything in seaching the old archives on geek-girl.com. problem: under solaris, scsi tape devices (/dev/rmt/*, which are linked to the stx,x: devs in /devices) are created with the permissions bits set to 666. this allows a mallicious user with a login on your system to 'mt erase' the contents of any tape devices connected to your system. solution: this is a tough one. i'll let you figure it out yourself. ~josh --- josh grubman / http://false.net/~jg "if you don't ask, i won't upset you"