LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices



Reply
 
Search this Thread
Old 10-14-2008, 11:49 PM   #1
shadowsnipes
Senior Member
 
Registered: Sep 2005
Distribution: Slackware
Posts: 1,442

Rep: Reputation: 70
Funky doc perms for util-linux-ng (stock Slackware package)


I just realized today that the files under /usr/doc/adjtimex-1.23/, which are from the stock Slackware 12.1 util-linux-ng-2.13.1-i486-1 package have uid and gid 1000!

Could someone with Slackware 12.1 do a quick
Code:
ls -l /usr/doc/adjtimex-1.23/
to let me know if others have this problem. If you do then I need to send a bug report to Pat.
 
Old 10-15-2008, 12:06 AM   #2
willysr
Senior Member
 
Registered: Jul 2004
Location: Jogja, Indonesia
Distribution: Slackware-Current
Posts: 2,621

Rep: Reputation: 445Reputation: 445Reputation: 445Reputation: 445Reputation: 445
mine is root:root, but i use updated util-linux package (2.14.1 from -Current)
 
Old 10-15-2008, 12:36 AM   #3
shadowsnipes
Senior Member
 
Registered: Sep 2005
Distribution: Slackware
Posts: 1,442

Original Poster
Rep: Reputation: 70
Quote:
Originally Posted by willysr View Post
mine is root:root, but i use updated util-linux package (2.14.1 from -Current)
That's good to know it isn't a problem in -current.
 
Old 10-15-2008, 02:10 AM   #4
wadsworth
Member
 
Registered: Aug 2007
Distribution: Slackware64 13.37
Posts: 215

Rep: Reputation: 65
I can confirm this on Slackware 12.1
Weird. How do you think that happened?
Code:
# find /. -gid 1000
/./usr/doc/adjtimex-1.23/adjtimex.lsm
/./usr/doc/adjtimex-1.23/COPYRIGHT
/./usr/doc/adjtimex-1.23/README.ru
/./usr/doc/adjtimex-1.23/COPYING
/./usr/doc/adjtimex-1.23/README
 
Old 10-15-2008, 02:23 AM   #5
shadowsnipes
Senior Member
 
Registered: Sep 2005
Distribution: Slackware
Posts: 1,442

Original Poster
Rep: Reputation: 70
Quote:
Originally Posted by wadsworth View Post
I can confirm this on Slackware 12.1
Weird. How do you think that happened?
Code:
# find /. -gid 1000
/./usr/doc/adjtimex-1.23/adjtimex.lsm
/./usr/doc/adjtimex-1.23/COPYRIGHT
/./usr/doc/adjtimex-1.23/README.ru
/./usr/doc/adjtimex-1.23/COPYING
/./usr/doc/adjtimex-1.23/README
It can happen when a build script is run on source files with non-root perms. If cp -a is used, for instance, instead of cat then you have to manually change the ownership to root.

Edit:
I sent Robby a notice of the problem.

Last edited by shadowsnipes; 10-15-2008 at 02:32 AM.
 
Old 10-15-2008, 07:30 AM   #6
brianL
LQ 5k Club
 
Registered: Jan 2006
Location: Oldham, Lancs, England
Distribution: Slackware & Slackware64 14.1
Posts: 7,139
Blog Entries: 52

Rep: Reputation: Disabled
Yes. Another confirmation, if needed:
Code:
brian@BrisSGL:~$ ls -l /usr/doc/adjtimex-1.23/
total 44
-rw-r--r-- 1 brian 1000 17982 1998-04-20 22:27 COPYING
-rw-r--r-- 1 brian 1000   764 1998-04-20 22:27 COPYRIGHT
-rw-r--r-- 1 brian 1000  6855 2007-10-06 18:36 README
-rw-r--r-- 1 brian 1000  7141 2004-04-03 20:51 README.ru
-rw-r--r-- 1 brian 1000   419 2007-10-06 01:22 adjtimex.lsm
 
Old 10-15-2008, 07:47 AM   #7
keefaz
Senior Member
 
Registered: Mar 2004
Distribution: Slackware
Posts: 4,617

Rep: Reputation: 136Reputation: 136
/usr/doc/adjtimex-1.23 directory permissions are set to 0755 root/root
and the files in this directory are set to 0644 1000/1000
(on my system, slackware 12.1, not current)
 
Old 10-15-2008, 08:26 AM   #8
rworkman
Slackware Contributor
 
Registered: Oct 2004
Location: Tuscaloosa, Alabama (USA)
Distribution: Slackware
Posts: 1,945

Rep: Reputation: Disabled
Thanks for the report, Phil. I think I recall someone mentioning this before, and my opinion then and now is that it's not really critical at all - it's just docs, so the worst thing that can happen is uid 1000 can edit them. Either way, an updated package isn't justified IMHO.

As for how it happened, oversight on my part - I missed that before I pushed my local repo to Pat, so don't blame him :-)
 
Old 10-15-2008, 10:24 AM   #9
shadowsnipes
Senior Member
 
Registered: Sep 2005
Distribution: Slackware
Posts: 1,442

Original Poster
Rep: Reputation: 70
Quote:
Originally Posted by rworkman View Post
Thanks for the report, Phil. I think I recall someone mentioning this before, and my opinion then and now is that it's not really critical at all - it's just docs, so the worst thing that can happen is uid 1000 can edit them. Either way, an updated package isn't justified IMHO.

As for how it happened, oversight on my part - I missed that before I pushed my local repo to Pat, so don't blame him :-)
It's easy to do. I actually did it on the whaw SlackBuild I submitted recently and you fixed it for me

The main reason it concerns me is for people running servers and such. A potentially malicious user could fill up / and grind it to a halt. However, seeing as how the uid is 1000 it is unlikely that it will correspond to some random malicious user.

If nothing else, I just wanted people to be aware of this. Perhaps a quick note on the Security mailing list would be worthwhile? Perhaps this thread is enough.

Thanks for the quick response, Robby!
 
Old 10-15-2008, 11:41 AM   #10
robel
Member
 
Registered: Oct 2008
Location: Norway
Distribution: Slackware
Posts: 61

Rep: Reputation: 15
Same here. Slackware 12.1

Last edited by robel; 10-15-2008 at 11:45 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Perms on USB and iPod are acting funky doralsoral Linux - Software 2 08-15-2007 09:27 PM
Java can't find package, but PATH set correctly (j2se1.4.0, java.util.regex package) Ethan Programming 5 02-06-2004 10:55 PM
dselect doesn't see util-linux-locales package franco Debian 1 10-24-2003 09:53 AM
ppp as non root w/o changing perms (slackware) xmnemonic Linux - Networking 0 08-02-2003 02:03 AM
in what package can i install the stock IDENTD rpm in RH8? kublador Linux - Software 1 06-11-2003 06:53 AM


All times are GMT -5. The time now is 09:29 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration