[BACK]Return to security CVS log [TXT][DIR] Up to [local] / src / etc

Diff for /src/etc/Attic/security between version 1.26 and 1.27

version 1.26, 1998/02/25 16:00:29 version 1.27, 1998/03/22 03:39:11
Line 224 
Line 224 
         fi          fi
 fi  fi
   
   # A good .kshrc will not have a umask or path, that being set in .profile
   # check anyway.
   > $OUTPUT
   rhome=/root
   list="/etc/ksh.kshrc ${rhome}/.kshrc"
   for i in $list; do
           if [ -s $i ] ; then
                   egrep umask $i |
                   awk '$2 % 100 < 20 \
                           { print "Root umask is group writeable" } \
                        $2 % 10 < 2 \
                           { print "Root umask is other writeable" }' >> $OUTPUT
                   if egrep PATH= $i > /dev/null ; then
                           SAVE_PATH=$PATH
                           unset PATH
                           /bin/ksh << end-of-sh > /dev/null 2>&1
                                   . $i
                                   list=\`echo \$PATH | /usr/bin/sed -e 's/:/ /g'\`
                                   /bin/ls -ldgT \$list > $TMP1
   end-of-sh
                           PATH=$SAVE_PATH
                           awk '{
                                   if ($10 ~ /^\.$/) {
                                           print "The root path includes .";
                                           next;
                                   }
                               }
                               $1 ~ /^d....w/ \
                   { print "Root path directory " $10 " is group writeable." } \
                               $1 ~ /^d.......w/ \
                   { print "Root path directory " $10 " is other writeable." }' \
                           < $TMP1 >> $OUTPUT
                   fi
   
           fi
   done
   if [ -s $OUTPUT ] ; then
           printf "\nChecking root ksh paths, umask values:\n$list\n"
           cat $OUTPUT
   fi
   
 # Root and uucp should both be in /etc/ftpusers.  # Root and uucp should both be in /etc/ftpusers.
 if egrep root /etc/ftpusers > /dev/null ; then  if egrep root /etc/ftpusers > /dev/null ; then
         :          :
Line 337 
Line 378 
   
 # Files that should not be owned by someone else or writeable.  # Files that should not be owned by someone else or writeable.
 list=".bashrc .cshrc .emacs .exrc .forward .klogin .login .logout \  list=".bashrc .cshrc .emacs .exrc .forward .klogin .login .logout \
       .profile .tcshrc"        .profile .tcshrc .kshrc .xsession"
 awk -F: '/^[^+-]/ { print $1 " " $6 }' /etc/passwd | \  awk -F: '/^[^+-]/ { print $1 " " $6 }' /etc/passwd | \
 while read uid homedir; do  while read uid homedir; do
         for f in $list ; do          for f in $list ; do
Legend:
Removed from v.1.26  
changed lines
  Added in v.1.27