->After reading some posts today I looked at a ->lot of RaQs I maintain. -> ->It has come to my attention that newly restored ->or upgraded RaQ3s and RaQ4s could have ->/etc/shadow* files that are world-readable. ->Check yours. Fix it: -># chmod 600 /etc/shadow* ->If you can't do it yourself, have someone do ->it for you.
Luckily I don't allow shell access so those files can't be viewed. But this begs the question WHY on earth would the official Cobalt Restore CD(s) be setting up restored boxes with risky permissions on the shadow password file? __________________________________________________ Do You Yahoo!? Send FREE Valentine eCards with Yahoo! Greetings! http://greetings.yahoo.com _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
