Hello,
I don't know the state of the current security scripts, but I've made
a patch for /etc/security/msec/cron-sh/security_check.sh (Mdk7,
msec-0.9-14mdk).
If you have users with login names longer than 8 chars than the security
check will fail due to a wrong comparison.
Here's the patch:
--- /etc/security/msec/cron-sh/security_check.sh.orig Thu Jan 6 18:14:37 2000
+++ /etc/security/msec/cron-sh/security_check.sh Fri Jun 2 10:27:43 2000
@@ -106,10 +106,10 @@
fi
### Check home directories. Directories should not be owned by someone else or
writeable.
-awk -F: '/^[^+-]/ { print $1 " " $6 }' /etc/passwd | \
+awk -F: '/^[^+-]/ { print $3 " " $6 }' /etc/passwd | \
while read uid homedir; do
if [[ -d ${homedir} ]] ; then
- file=`ls -ldg ${homedir}`
+ file=`ls -ldgn ${homedir}`
printf "$uid $file\n"
fi
done | awk '$1 != $4 && $4 != "root" \
greetinx,
Frank
-------------------------------------------------------------------------
If you can touch it and you can see it, it's REAL.
If you can touch it but you can't see it, it's TRANSPARENT.
If you can't touch it but you can see it, it's VIRTUAL.
If you can't touch it and you can't see it, it's GONE.
Sending unsolicited commercial email to this address may be a violation
of the Washington State Consumer Protection Act, chapter 19.86 RCW.
Das Verschicken unverlangter kommerzieller email an diese Adresse ist
verboten (LG Traunstein, 2 HK O 3755/97 vom 14.10.1997, CR 1998, 171f).
(Frank Meurer, <[EMAIL PROTECTED]>, PGP ID: 0x5E756DA8)
