From W.Belgers@nl.cis.philips.com  Tue May 21 01:13:16 1996
Received: from relay.philips.nl (ns.philips.nl [130.144.65.1])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id BAA07062
          for <FreeBSD-gnats-submit@freebsd.org>; Tue, 21 May 1996 01:13:06 -0700 (PDT)
Received: (from smap@localhost) by relay.philips.nl (8.6.9/8.6.9-950414) id KAA19557 for <FreeBSD-gnats-submit@freebsd.org>; Tue, 21 May 1996 10:12:27 +0200
Received: from unknown(192.26.173.32) by ns.philips.nl via smap (V1.3+ESMTP) with ESMTP
	id sma019409; Tue May 21 10:11:29 1996
Received: from giga.lss.cp.philips.com (giga.lss.cp.philips.com [130.144.199.31]) by smtp.nl.cis.philips.com (8.6.10/8.6.10-0.9z-02May95) with SMTP id KAA26840 for <FreeBSD-gnats-submit@freebsd.org>; Tue, 21 May 1996 10:13:18 +0200
Received: by giga.lss.cp.philips.com (?/?)
    id KAA00792; Tue, 21 May 1996 10:11:28 +0200 (MET DST)
Message-Id: <199605210811.KAA00792@giga.lss.cp.philips.com>
Date: Tue, 21 May 1996 10:11:28 +0200 (MET DST)
From: W.Belgers@nl.cis.philips.com (Walter Belgers)
Reply-To: W.Belgers@nl.cis.philips.com
To: FreeBSD-gnats-submit@freebsd.org
Subject: permissions binaries directories
X-Send-Pr-Version: 3.2

>Number:         1226
>Category:       bin
>Synopsis:       binaries directories owned by bin, not root
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:
>Keywords:
>Date-Required:
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Tue May 21 01:20:02 PDT 1996
>Closed-Date:    Sun May 26 20:30:35 MET DST 1996
>Last-Modified:  Sun May 26 20:32:10 MET DST 1996
>Originator:     Walter Belgers
>Release:        FreeBSD 2.1-STABLE i386
>Organization:
Ir. W.H.B. Belgers                     work: W.Belgers@nl.cis.philips.com
Origin Corporate Internet Services     home:               walter@giga.nl
Bldg VN 513, PO Box 218, 5600MD Ehv    phone/fax: (+31 40 27) 82753/83962
>Environment:
>Description:

The directories /bin /sbin /usr/bin /usr/sbin /usr/local/bin
/usr/local/sbin are all owned by bin, group bin. This makes it possible
for anybody with bin privileges to become root easily. It is best to
make them owned root.wheel.

>How-To-Repeat:
>Fix:
	
chown root.wheel /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin
>Release-Note:
>Audit-Trail:

From: J Wunsch <j@uriah.heep.sax.de>
To: W.Belgers@nl.cis.philips.com
Cc: FreeBSD-gnats-submit@freebsd.org
Subject: Re: bin/1226: permissions binaries directories
Date: Wed, 22 May 1996 00:54:37 +0200 (MET DST)

 As Walter Belgers wrote:
 
 > The directories /bin /sbin /usr/bin /usr/sbin /usr/local/bin
 > /usr/local/sbin are all owned by bin, group bin. This makes it possible
 > for anybody with bin privileges to become root easily.
 
 Only if you are r/w NFS exporting it.  (bin cannot dump something over
 an existing setuid root program, regardless of the directory
 ownership.  bin is disabled by default anyway.)
 
 I think the ownership has been chosen deliberately.  If we once start
 this discussion, i'm afraid we could soon transfer the entire system
 to owner root.
 
 -- 
 cheers, J"org
 
 joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE
 Never trust an operating system you don't have sources for. ;-)
State-Changed-From-To: open->closed 
State-Changed-By: joerg 
State-Changed-When: Sun May 26 20:30:35 MET DST 1996 
State-Changed-Why:  
The current ownership of directories is rather intentional. 

People running security time-bombs like NIS or NFS must take 
additional care anyway. 

>Unformatted:
 
Walter Belgers
