Then you'd better check your umask of root. Root's umask should be set to
022 by default (for SECURITY_LEVEL < 4? I can't confirm.).
Most files you've specified are writable only by root in my system.
Abel Cheung
On Sun, 8 Apr 2001, J . A . Magallon wrote:
> Hey, cookers.
>
> This is a question on file permissions and security mails.
> Root account in my box is receivin (on each sec check), a mail like the one
> appended. Are those files all to be world-writable ?
>
> Security Warning: World Writeable files found :
> - /etc/portsentry/portsentry.ignore
> - /var/lock/subsys/alsa
> - /var/lock/subsys/atd
> - /var/lock/subsys/crond
> - /var/lock/subsys/gpm
> - /var/lock/subsys/keytable
> - /var/lock/subsys/local
> - /var/lock/subsys/network
> - /var/lock/subsys/nscd
> - /var/lock/subsys/ntpd
> - /var/lock/subsys/portsentry
> - /var/lock/subsys/postfix
> - /var/lock/subsys/proftpd
> - /var/lock/subsys/random
> - /var/lock/subsys/sshd
> - /var/lock/subsys/xinetd
> - /var/log/security/open_port.today
> - /var/log/security/suid_group.today
> - /var/log/security/suid_root.today
> - /var/log/security/unowned_group.today
> - /var/log/security/unowned_user.today
> - /var/log/security/writeable.today
> - /var/run/.nscd_socket
> - /var/run/nscd.pid
> - /var/run/runlevel.dir
> - /var/run/sshd.pid
> - /var/spool/postfix/private/bounce
> - /var/spool/postfix/private/bsmtp
> - /var/spool/postfix/private/cleanup
> - /var/spool/postfix/private/cyrus
> - /var/spool/postfix/private/defer
> - /var/spool/postfix/private/error
> - /var/spool/postfix/private/flush
> - /var/spool/postfix/private/ifmail
> - /var/spool/postfix/private/lmtp
> - /var/spool/postfix/private/local
> - /var/spool/postfix/private/rewrite
> - /var/spool/postfix/private/smtp
> - /var/spool/postfix/private/uucp
> - /var/spool/postfix/private/virtual
> - /var/spool/postfix/public/pickup
> - /var/spool/postfix/public/qmgr
> - /var/spool/postfix/public/showq
>
>
