Log inUsernamePassword
Log me on automatically each visit    
Register
Register
Log in to check your private messages
Log in to check your private messages
SMS Forum Index » General Discussion

Post new topic   Reply to topic
Difference between SMS64 1.6.5 and 2.0.5
View previous topic :: View next topic  
Author Message
keopp
Senior Member


Joined: 08 Nov 2008
Posts: 166
Location: Romania

PostPosted: Thu Oct 17, 2013 7:21 pm    Post subject: Difference between SMS64 1.6.5 and 2.0.5 Reply with quote

Hello,

While configuring a fresh SMS64 2.0.5 installation I saw the following difference from SMS64 1.6.5.(see attached files) regarding ownership of the [..]

Is it safe?

Thank you.



SMS64_1.6.5.jpg
 Description:
SMS64_v.1.6.5
 Filesize:  56.07 KB
 Viewed:  3119 Time(s)

SMS64_1.6.5.jpg



SMS64_2.0.5.jpg
 Description:
SMS64_v.2.0.5
 Filesize:  54.23 KB
 Viewed:  2799 Time(s)

SMS64_2.0.5.jpg


Back to top
View user's profile Send private message
gerasimos_h
Site Admin


Joined: 09 Aug 2007
Posts: 1757
Location: Greece

PostPosted: Thu Oct 17, 2013 8:36 pm    Post subject: Reply with quote

Hello,
well some files are copied through samba in the past while I was creating the x86_64 branch, so that's the reason nobody:nogroup permissions exist, although newer package is fixed
Code:
drwxrwxrwx root/root         0 2011-03-22 20:40 etc/dovecot/
-rwxr--r-- root/root       116 2011-03-22 20:40 etc/dovecot/README
-rwxr--r-- root/root       635 2011-03-22 20:40 etc/dovecot/dovecot-egroupware.conf
-rwxr--r-- root/root      3685 2011-03-22 20:40 etc/dovecot/dovecot-example.conf
-rwxr--r-- root/root       461 2011-03-22 20:40 etc/dovecot/dovecot-ldap-egroupware.conf
-rwxr--r-- root/root      5187 2011-03-22 20:40 etc/dovecot/dovecot-ldap-example.conf
-rwxr--r-- root/root       441 2011-03-22 20:40 etc/dovecot/dovecot-ldap.conf.new
-rwxr--r-- root/root      4625 2011-03-22 20:40 etc/dovecot/dovecot-sql-example.conf
-rwxr--r-- root/root       687 2011-09-18 20:13 etc/dovecot/dovecot.conf.new


But you might found other as well like clamav package or even samba as far as I see
Code:
drwxr-xr-x nobody/nogroup    0 2010-06-19 12:42 etc/
drwxr-xr-x nobody/nogroup    0 2010-06-19 12:42 etc/rc.d/
-rwxr--r-- nobody/nogroup 1241 2013-10-16 18:59 etc/rc.d/rc.samba.new
drwxr-xr-x nobody/nogroup    0 2010-06-19 12:42 etc/samba/
drwxr-xr-x nobody/nogroup    0 2010-06-19 12:42 etc/samba/private/
-rwxr--r-- nobody/nogroup 8192 2010-05-30 16:40 etc/samba/private/secrets.tdb
-rwxr--r-- nobody/nogroup    0 2010-05-30 16:40 etc/samba/private/smbpasswd
-rwxr--r-- nobody/nogroup 9672 2010-05-30 16:40 etc/samba/smb.conf-sample
-rwxr--r-- nobody/nogroup 1632 2013-10-16 18:59 etc/samba/smb.conf.new


Now about security, files are still have read only permissions, and nobody has no shell...
Since most likely you don't have other users on server machine like standard users (administrator is a sudoer anyway) there is no risk...

If someone have access as a user, could do some damage, running a script or a webserver as nobody and manipulate the files...

A quick fix is doing a
Code:
find /etc -user nobody -exec chown root:root {} \;

I'll rebuilt packages ASAP and fix my builds...
Thanks for the bug report...

gerasimos_h

_________________
Superb! Mini Server Project Manager
http://sms.it-ccs.com
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic    SMS Forum Index » General Discussion All times are GMT + 2 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum

SMS - Superb! Mini Server Project © 2016
Powered by phpBB © 2001, 2002 phpBB Group
iCGstation v1.0 Template By Ray © 2003, 2004 iOptional