Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!simtel!swidir.switch.ch!newsfeed.ACO.net!Austria.EU.net!EU.net!newsfeed.internetmci.com!nntp-hub2.barrnet.net!nntp-hub.barrnet.net!us.oracle.com!news.caldera.com!park.uvsc.edu!usenet
From: Terry Lambert <terry@cs.weber.edu>
Newsgroups: comp.unix.bsd.misc,comp.unix.bsd.bsdi.misc
Subject: Re: Circumventing immutable file protections
Date: 12 Aug 1995 01:39:35 GMT
Organization: Utah Valley State College, Orem, Utah
Lines: 27
Message-ID: <40h0on$5k6@park.uvsc.edu>
References: <DCvE8s.15A@candle.pha.pa.us> <4095br$3tj@kragar.kei.com> <409qef$t3n@Germany.EU.net> <DD4v3C.I6K@wlbr.iipo.gtegsc.com>
NNTP-Posting-Host: hecate.artisoft.com
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.misc:165 comp.unix.bsd.bsdi.misc:631
sms@wlv.iipo.gtegsc.com (Steven M. Schultz) wrote:
>
> In article <409qef$t3n@Germany.EU.net>,
> Bernard Steiner <bs@Germany.EU.net> wrote:
> >
> >Note: making / ro is actually possible *if* you have a seperate /var, a
> >seperate /tmp *and* provide appropriate soft links such as
> >/dev/log -> /var/dev/log so that syslog works. I tried this once, and the
> >system continued nicely. I don't see why / should be read-write...
>
> Ever change your password while / was mounted ro? Uh, me thinks
> passwd will throw a fit at not being able to change /etc/passwd
> and associated files. Hmmm, now we need a rw copy of /etc which
> is where any cracker is likely to concentrate anyways...
NIS.
The password change is on the NIS server, not on the local machine,
which allows you to cookie-cutter configurations for the local
machine (which is the point in the first place).
Terry Lambert
terry@cs.weber.edu
---
Any opinions in this posting are my own and not those of my present
or previous employers.