Frank Meurer <[EMAIL PROTECTED]> writes:
> Hello,
>
> I don't know the state of the current security scripts, but I've made
> a patch for /etc/security/msec/cron-sh/security_check.sh (Mdk7,
> msec-0.9-14mdk).
> If you have users with login names longer than 8 chars than the security
> check will fail due to a wrong comparison.
> Here's the patch:
>
> --- /etc/security/msec/cron-sh/security_check.sh.orig Thu Jan 6 18:14:37 2000
> +++ /etc/security/msec/cron-sh/security_check.sh Fri Jun 2 10:27:43 2000
> @@ -106,10 +106,10 @@
> fi
>
> ### Check home directories. Directories should not be owned by someone else or
>writeable.
> -awk -F: '/^[^+-]/ { print $1 " " $6 }' /etc/passwd | \
> +awk -F: '/^[^+-]/ { print $3 " " $6 }' /etc/passwd | \
> while read uid homedir; do
> if [[ -d ${homedir} ]] ; then
> - file=`ls -ldg ${homedir}`
> + file=`ls -ldgn ${homedir}`
> printf "$uid $file\n"
> fi
> done | awk '$1 != $4 && $4 != "root" \
Thanks for your patch, will be included ASAP :-)
--
-- Yoann http://www.mandrakesoft.com/~yoann/
It is well known that M$ product don't make a free() after a malloc(),
the unix community wish them good luck for their future developement.
