From muir@idiom.com  Sat Jan 14 04:01:28 1995
Received: from idiom.com (idiom.com [140.174.82.4]) by freefall.cdrom.com (8.6.9/8.6.6) with ESMTP id EAA24787 for <FreeBSD-gnats-submit@freebsd.org>; Sat, 14 Jan 1995 04:01:23 -0800
Received: (from muir@localhost) by idiom.com (8.6.9/8.6.9) id EAA21248; Sat, 14 Jan 1995 04:01:21 -0800
Message-Id: <199501141201.EAA21248@idiom.com>
Date: Sat, 14 Jan 1995 04:01:21 -0800
From: David Muir Sharnoff <muir@idiom.com>
Reply-To: muir@idiom.com
To: FreeBSD-gnats-submit@freebsd.org
Subject: first Initial security report is bogus becuase of ls formatting change
X-Send-Pr-Version: 3.2

>Number:         120
>Category:       misc
>Synopsis:       first Initial security report is bogus becuase of ls formatting change
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:
>Keywords:
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Sat Jan 14 04:10:00 1995
>Closed-Date:    Sat Jan 20 01:47:29 PST 1996
>Last-Modified:  Sat Jan 20 01:48:57 PST 1996
>Originator:     David Muir Sharnoff
>Release:        FreeBSD 2.0-RELEASE i386
>Organization:
Idiom Consulting
>Environment:

>Description:

	The first internal security report that I got after a fresh
	install had lots of bogus output.  It was all of the form:

	checking setuid files and devices:
	try setuid/device diffs:
	1,18c1,27
	< -r-xr-sr-x  1 bin  operator  49152 Nov 22 04:00:15 1994 /bin/df
	---
	> -r-xr-sr-x  1 bin   operator   49152 Nov 22 04:00:15 1994 /bin/df

	Obviously, the initial database is in a slightly different form
	than what is shipped.

>How-To-Repeat:

>Fix:

>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->closed 
State-Changed-By: mpp 
State-Changed-When: Sat Jan 20 01:47:29 PST 1996 
State-Changed-Why:  
Fixed in rev 1.8 of /etc/security sometime in May of 1995.  The 
"diff" command is now called with the "-b" option to ignore 
changes in whitespace. 
>Unformatted:


