[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Ossec-list] adduser problem in latest OSSEC
- Subject: [Ossec-list] adduser problem in latest OSSEC
- From: daniel.cid at gmail.com (Daniel Cid)
- Date: Tue, 23 May 2006 11:48:45 -0300
Just as a reminder, this shouldn't be a security issue, because
only the user root and group ossec would be able to access any file
inside /var/ossec. So, even if the file /var/ossec/etc/decoder.xml is owned
by uid 1000, the user with uid 1000 wouldn't be able to access it..
Thanks,
--
Daniel B. Cid
dcid @ ( at ) ossec.net
On 5/23/06, Daniel Cid <daniel.cid at gmail.com> wrote:
> Hi Kayvan,
>
> Thanks for reporting this. I already knew of some of these problems and
> I have a fix ready for it. I will release a patch version of the v0.8 with
> it corrected in there. As a remediation for now, just "chown root"
> for every file that is owned by uid or gid 1000...
>
> Thanks,
>
> --
> Daniel B. Cid
> dcid @ ( at ) ossec.net
>
> On 5/22/06, Kayvan A. Sylvan <kayvan at sylvan.com> wrote:
> > >From one of my coworkers:
> >
> > > Kayvan,
> > >
> > > OSSEC sets up several files and directories within /var/ossec with uid
> > > and gid of 1000, which, in our case is actually already assigned to a
> > > user and therefore, that user ends up owning those files.
> > >
> > > Jim
> > _______________________________________________
> > ossec-list mailing list
> > ossec-list at ossec.net
> > http://mailman.underlinux.com.br/mailman/listinfo/ossec-list
> >
>
OSSEC home |
Main Index |
Thread Index
OSSEC project: www.ossec.net.
Mailling list information: http://www.ossec.net/en/mailing_lists.html.