Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: SCO OpenServer 5.0.5 overwrite /etc/shadow
From: belal () SCO COM (Bela Lubkin)
Date: Mon, 11 Oct 1999 14:37:33 -0700

Brock Tellier wrote:


Any user may overwrite any file with group auth (i.e. /etc/shadow,


[sad tale which does not require repeating]

Brock, I would like to publically thank you for the auditing you are
doing.  And, I suppose, hang my head in shame at the problems you're
finding in the process.

You are being heard.  Various people and groups at SCO are scrambling to
fix what's been mentioned.  Your discoveries are also prompting various
proactive security audit efforts.  I'm not in a position to make any
promises about results.  I do know that we have good intentions and will
try to deliver on them as well as we can...

Not an official SCO representative --


Bela<

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]