DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 28th December 2020
frcc frcc is offline
Don't Worry Be Happy!
 
Join Date: Jul 2011
Location: hot,dry,dusty,rainy,windy,straight winds, tornado,puts the fear of God in you-Texas
Posts: 335
Default urndis0 insecure

Hello folks

Connecting my OpenBsd laptop via usb cable to my Android for the first time
using/via urndis0.....I get the message only once

"Warning /etc/hostname.urndis0 is insecure fixing permissions"
I've looked around in logs and was curious, exactly what went on behind that
message......

Thanks in advanvce.
Reply With Quote
  #2   (View Single Post)  
Old 28th December 2020
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,977
Default

The default access control for files created by root is read/write user, read group, read world, or ls(1) long output "-rw-r--r--" or chmod(1) setting 644. The netstart(8) script will set any hostname.if(5) file so that the owner:group is root:wheel and there is no read access from world, ls(1) output "-rw-r-----" or chmod(1) setting 640.
Code:
        # Not using stat(1), we can't rely on having /usr yet.
        set -A _stat -- $(ls -nL $_hn)
        if [[ "${_stat[0]}${_stat[2]}${_stat[3]}" != *---00 ]]; then
                print -u2 "WARNING: $_hn is insecure, fixing permissions."
                chmod -LR o-rwx $_hn
                chown -LR root:wheel $_hn
Reply With Quote
  #3   (View Single Post)  
Old 28th December 2020
frcc frcc is offline
Don't Worry Be Happy!
 
Join Date: Jul 2011
Location: hot,dry,dusty,rainy,windy,straight winds, tornado,puts the fear of God in you-Texas
Posts: 335
Default

Ty Jiggimi, informative as usual.....
Scheeeeez! Looked at that code in /ect/netstart ................should have looked harder before posting .my apologies.

Last edited by frcc; 28th December 2020 at 06:43 PM.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Researchers: XML encryption standard is insecure J65nko News 0 20th October 2011 05:17 PM
Researchers create stealth virtual machine that can run alongside insecure VMs J65nko News 0 8th October 2011 12:56 PM


All times are GMT. The time now is 11:52 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick