|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Artem 'Zazoobr' Ignatjev (timon
memphis.mephi.ru)Date: Tue Feb 05 2002 - 04:52:55 CST
> From: Christoph Kukulies <kukugilberto.physik.RWTH-Aachen.DE>
> To: freebsd-securityFreeBSD.ORG
> Subject: .forward+ group writable directory
>
> Since two days my procmail filter isn't working anymore and I
> see these logs in my maillog.
>
> It's FreeBSD 4.4 with ESMTP Sendmail 8.11.6/8.11.6 (the stock
> that comes withthe distribution). Is it likely that I have been
> hacked? I see otherwise no signs thereof.
>
>
> Feb 5 00:00:04 host sendmail[52966]: g14N03M52963: forward /home/user/.forward.host+: Group writable directory
> Feb 5 00:00:04 host sendmail[52966]: g14N03M52963: forward /home/user/.forward+: Group writable directory
> Feb 5 00:00:04 host sendmail[52966]: g14N03M52963: forward /home/user/.forward.host: Group writable directory
> Feb 5 00:00:04 host sendmail[52966]: g14N03M52963: forward /home/user/.forward: Group writable directory
Sendmail treats group/world writable files/dirs (aliases, mail queue, etc) as insecure.
You should either `chmod g-w /home/user' or read sendmail documentation (especially for security issues and "DontBlameSendmail" option).
Sinceherely yours, Artem 'Zazoobr' Ignatjev.
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]