Bugtraq: Re: Amanda multiple vendor local root compromises

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Amanda multiple vendor local root compromises

From: capveg () CS UMD EDU (Rob)
Date: Mon, 1 Nov 1999 19:24:09 -0500

Amanda's "runtar" program, suid root by default on FreeBSD 3.3, calls
/usr/bin/tar and passes all args given to runtar to this program. Tar is


FWIW, runtar does not need to be suid root if the amanda user (defaults to
user "amanda") has read access to the raw disks.  This is typically
accomplished
by adding amanda to which ever group owns the disks.  This doesn't fix the
buffer overflow problem in tar, but it is a decent work around.

Of course, it would be better if setuid root were not the default
configuration:(

- Rob
.

By Date By Thread

Current thread:

Amanda multiple vendor local root compromises Tellier, Brock (Oct 30)
- Re: Amanda multiple vendor local root compromises Ian Turner (Nov 01)
- Re: Amanda multiple vendor local root compromises Chris Tobkin (Nov 01)
  - Re: Amanda multiple vendor local root compromises Bill Fumerola (Nov 01)
- Re: Amanda multiple vendor local root compromises monti (Nov 01)
- Re: Amanda multiple vendor local root compromises Rob (Nov 01)
- Unqualified Postings edi () GANYMED ORG (Nov 01)
  - Re: Unqualified Postings v0rt (Nov 02)
- <Possible follow-ups>
- Re: Amanda multiple vendor local root compromises Alexandre Oliva (Nov 02)
- Re: Amanda multiple vendor local root compromises Alexandre Oliva (Nov 02)