LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 10-15-2002, 03:52 PM   #1
jflook
LQ Newbie
 
Registered: Nov 2001
Location: Berwick, PA
Distribution: RedHat/Mandrake
Posts: 3

Rep: Reputation: 0
Post Interchange upgrage from 4.2 to 2.8.6


We had to upgrade our server from interchange version 4.2 with redhat 7.0 to version 4.8.6 with redhat 7.2.

It was not an actual upgrade due to a hacker messing with the eth0 so we had to rely on a backup a day ago. The whole server is actually backed up, but due to the security holed in 4.2 we took a brand new machine put rh 7.2 and interchange 4.8.6. Restored the needed files.

There is one problem:
The files in /var/www/cgi-bin/* are system protected with a permissions of -rwSr-sr-x

What is the S and little s for how do I take it off/add it and is it possible to move that invo to another computer with out corrupting. Or do I have to unconvert it and then move.

-HELP
 
Old 10-15-2002, 03:54 PM   #2
jflook
LQ Newbie
 
Registered: Nov 2001
Location: Berwick, PA
Distribution: RedHat/Mandrake
Posts: 3

Original Poster
Rep: Reputation: 0
Sorry about that.... it is 4.2 to 4.8.6 interchange
 
Old 10-16-2002, 12:33 AM   #3
neo77777
LQ Addict
 
Registered: Dec 2001
Location: Brooklyn, NY
Distribution: *NIX
Posts: 3,704

Rep: Reputation: 56
In the permission scheme you got there is hell lot of a security hole - s and S are suid and sgid whic tell the system to run scripts in the context of the user and group who instantiated the scripts. For instance if a script performs crtical system calls this means that if user A runs this script he might insert some nusty malformed requests into the script, and hence, undermine the security (the capital S with rw gives the user a permission to modify the script, even remove it) of the whole system, you should be very careful with those. The permissions were created with
chmod 6645
 
Old 10-16-2002, 04:29 AM   #4
jflook
LQ Newbie
 
Registered: Nov 2001
Location: Berwick, PA
Distribution: RedHat/Mandrake
Posts: 3

Original Poster
Rep: Reputation: 0
Talking

I know that is a security hole cause we got hacked and who ever did it changed those permissions. Thanks a million on how to set them.

 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
CUPS Upgrage Problem DoddyUK Linux - Hardware 0 05-26-2004 05:44 AM
Please HELP on Interchange 4.8/Redhat 7.1 webcoder Linux - Newbie 0 11-13-2003 10:52 AM
Interchange gbg Linux - Software 0 09-30-2003 09:52 AM
Anyone here know Interchange? kidwired Linux - Software 2 01-17-2003 01:27 PM
Anyone ever played with interchange??? Az_Thunder Linux - Software 0 09-25-2002 04:19 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 01:03 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration