Displaying 20 results from an estimated 5000 matches similar to: "strip setuid/setgid bits on backup (was Re: small security-related rsync extension)"
2002 Jul 09
1
strip setuid/setgid bits on backup (was Re: small security-related rsync extension)
>
> > never seen a file created with a newline in the filename
> > (except, perhaps as a test). The newline in filename issue
>
> And in security exploits :-) Given a newline-based format, one *must*
> quote or deny newlines in filenames, not assume they're rare. (No
> obvious reason not to use URL-style %-quoting, or mime-style
> =-quoting, if you want to
2002 Jul 09
1
strip setuid/setgid bits on backup (was Re: small security-related rsync extension)
I vote for the consistent, complete log format as a solution to this sort
of thing, and those who need to take non-rsync related actions based on
what rsync did can write their own applications to do so.
People keep coming up with some particular thing they need done for their
own application, and want rsync to do that too. rsync is a tool to make
one thing exactly like another. It is not
2002 Jul 19
0
strip setuid/setgid bits on backup (was Re: small security-related rsync extension)
I think this is more a philosophical issue. Some people want all
applications to be like windows. "Are you sure you want to delete this
file" <YES> "really"<yes>"it might make something stop
working<yes>"permission denied". Unix assumes you know what you're doing.
If you don't, tough.
There's no reason you can't make a
2002 Jul 19
1
strip setuid/setgid bits on backup (was Re: small security-related rsync extension)
On Fri, 19 Jul 2002, Dan Stromberg wrote:
> Many apologies. If we update on the nfs server, as we've intended all
> along, we should have no .nfs* files.
Well, here's one thing that could make them, even if they're being created
only directly, not over NFS.
I'm watching the directory you're syncing into.
I open the file while it's still there.
You delete it, and
2005 Jul 06
1
setuid/setgid bits
version: rsync v2.6.1 (+ a minor, unrelated patch).
I'm rsyncing files (not as root) and am happy (indeed, for what I
want, delighted) that the files at the target side end up owned by the
account doing the rsync.
However, I've found that if I have a setuid/setgid file on the source
side, the target file ends up setuid/setgid too (but under a different
id!). This happens whether
2007 Apr 24
2
chmod sftp command and setgid/setuid bit
Hi OpenSSH developers,
I'm using OpenSSH on a daily basis and I'm very pleased
with the work you've done.
I am contributing to some Open Source software hosted at Savannah
https://savannah.nongnu.org/projects/tsp
and we recently hit some sftp unexpected behavior:
https://savannah.gnu.org/support/?105838
when using chmod sftp client command
it appears that setuid / setgid bits are
2011 Apr 21
7
[Bug 1893] New: change ssh-keisign to setgid from setuid
https://bugzilla.mindrot.org/show_bug.cgi?id=1893
Summary: change ssh-keisign to setgid from setuid
Product: Portable OpenSSH
Version: 5.8p1
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P2
Component: Miscellaneous
AssignedTo: unassigned-bugs at mindrot.org
2008 Jun 12
1
[Bug 1310] chmod sftp command and setgid/setuid bit
https://bugzilla.mindrot.org/show_bug.cgi?id=1310
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |djm at mindrot.org
Blocks| |1452
--- Comment #3 from Damien Miller
2009 Nov 13
0
Dovecot setuid, setgid, permission denied Problem!
Hello! Please, help!
I have trouble with Dovecot's Deliver utility. I don't know how to avoid
errors. Let me know what additional related information do you need?
1) Its call in Exim's configure:
==========================================
local_delivery_spam_transport:
driver = pipe
command = /usr/local/libexec/dovecot/deliver -c
2005 Jan 20
2
Bug#291395: logcheck-database: Rules dirs are setuid, they should be setgid
Package: logcheck-database
Version: 1.2.33
Severity: normal
I just installed 1.2.33, and it made my rules dirs setuid, not setgid...
- Marc
-- System Information:
Debian Release: 3.1
APT prefers testing
APT policy: (900, 'testing'), (300, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.8-1-k7
Locale: LANG=en_CA, LC_CTYPE=en_CA (charmap=ISO-8859-1)
Versions of
2010 Feb 12
2
Setuid bit always set on Vista mount
Files on my Vista mount always have the S mode (setgid bit?) set according
to ls -l. This is a security hole and causes other problems. I can't clear
the bit with chmod; in fact the results of doing chmod don't make any sense
to me (I'll be glad to provide examples). Typical files show as -rwxrwSrwx,
though not all. The smb.conf file has create mask 0666 and directory mask
0777 various
2004 Feb 10
1
applying permissions to subdirectories using setgid doesn't do th e trick... :(
Dear list.
I have a problem that I cannot seem to get rid of.
I have a directory/share (on linux) called "smb" containing four
subdirectories. This directory will be 'exported' using samba.I would like
to have different permissions on the different subdirectories. This works,
except for this one directory (called temp) that I want to be read/write for
everybody.
Using force
2006 Mar 12
2
deliver setgid issues
Okay .. have dovecot set up with following settings :
userdb static {
args = uid=97 gid=97 home=/export/dovecot/mail/%d/%u
mail=mbox:/export/dovecot/mbox/%d/%u/
}
passdb passwd-file {
# Path for passwd-file
args = /etc/dovecot-passdb
}
Passdb works I think in the sense that I can log into dovecot using a
regular mail client.
The real issue is when I try to deliver
2002 Mar 07
0
[Bug 136] New: setgid() deemed to fail for non-suid ssh client on linux if using other than primary group
http://bugzilla.mindrot.org/show_bug.cgi?id=136
Summary: setgid() deemed to fail for non-suid ssh client on linux
if using other than primary group
Product: Portable OpenSSH
Version: 3.0.2p1
Platform: ix86
OS/Version: Linux
Status: NEW
Severity: normal
Priority: P2
Component: ssh
2018 Jan 20
1
[Bug 13239] New: "rsync --times" does not keep dirs' setgid bits when user not member of setgid group
https://bugzilla.samba.org/show_bug.cgi?id=13239
Bug ID: 13239
Summary: "rsync --times" does not keep dirs' setgid bits when
user not member of setgid group
Product: rsync
Version: 3.1.2
Hardware: All
OS: Linux
Status: NEW
Severity: normal
Priority: P5
2018 Mar 23
2
File system permissions - setgid bit and Netapp NFS volumes
Greetings Dovecot List,
I have a bit of an edge case I am trying to resolve. I am currently
using dovecot on Ubuntu 14.04 - Ubuntu package version:
1:2.2.9-1ubuntu2.3
I have attached the output of doveconf -n to this email - but to
describe the configuration in a nutshell:
my server is configured to use Maildir storage
I do not use dovecot delivery service (there is a separate
2003 May 06
4
[Bug 555] If user does a newgrp before envoking ssh, it fails with a setgid error.
http://bugzilla.mindrot.org/show_bug.cgi?id=555
Summary: If user does a newgrp before envoking ssh, it fails with
a setgid error.
Product: Portable OpenSSH
Version: older versions
Platform: UltraSparc
OS/Version: Solaris
Status: NEW
Severity: normal
Priority: P2
Component: ssh
2018 Apr 16
0
File system permissions - setgid bit and Netapp NFS volumes
On Fri, 23 Mar 2018 09:53:00 -0700
Shaun Johnson <shaun at linuxmagic.com> wrote:
> Greetings Dovecot List,
>
> I have a bit of an edge case I am trying to resolve. I am currently
> using dovecot on Ubuntu 14.04 - Ubuntu package version:
>
> 1:2.2.9-1ubuntu2.3
>
> I have attached the output of doveconf -n to this email - but to
> describe the configuration
2004 Aug 06
6
[PATCH] Icecast2 - chroot, setuid/gid...
Hi all again...
I did a chroot patch with ability to change uid and gid.
I dunno if you all approve with the current implementation but the patch
is small and it works here.
remember to CC, since i'm not on this ml...
//Ian Kumlien
PS. To anyone on vorbis-dev, I'm *REALLY* sorry must be tired or something.. =)
DS.
<p><p><p>
-------------- next part --------------
A
2010 Apr 19
2
setgid failed - Not owner
Hello ALL,
I got errors on a new installation, maybe I forgot something.
The system is Solaris, Dovecot 1.2.10, Postfix 2.7.0, MySQL 5.1.25.
Can send mail with dovecot imap, but can`t retrieve the messages.
Strange, I can save and retrieve draft messages ok, files are always
with postfix:postfix ownership.
Sorry if this is newbie question, but can`t find a solution.
Syslog info:
Apr 19