Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19
A little security help please - Page 2
Page 2 of 6 FirstFirst 1234 ... LastLast
Results 11 to 20 of 59

Thread: A little security help please

  1. #11

    Re: A little security help please

    Ok I am looking at the /etc/pam.d/su file right now. Let me post it here so I dont mess up su any worse *
    Code:
    #%PAM-1.0
    auth * * * sufficient * /lib/security/pam_rootok.so
    # Uncomment the following line to implicitly trust users in the "wheel" group.
    #auth * * * sufficient * /lib/security/pam_wheel.so trust use_uid
    # Uncomment the following line to require a user to be in the "wheel" group.
    #auth * * * required * * /lib/security/pam_wheel.so use_uid
    auth * * * required * * /lib/security/pam_stack.so service=system-auth
    account * *required * * /lib/security/pam_stack.so service=system-auth
    password * required * * /lib/security/pam_stack.so service=system-auth
    session * *required * * /lib/security/pam_stack.so service=system-auth
    session * *optional * * /lib/security/pam_xauth.so
    Just want to make sure I do the right thing with it, also, since I will be at work all day I will have to do everything command line via ssh. *Im pretty good command line, but I dont know much about changing groups and owners and such command line, or how to check the currect groups/owners for that matter. *Thanks again guys!

  2. #12
    Junior Member
    Join Date
    May 2001
    Posts
    53

    Re: A little security help please

    I dont know much about changing groups and owners and such command line, or how to check the currect groups/owners for that matter.
    To check who owns a file, type:
    ls -alF

    The names you see in the output are the owner followed by the group. I think someone may have mentioned it in passing, but to change ownership, type:
    chown newowner:newgroup /name/of/file

    In order to use chown, you have to be either root or the current owner.

    [edit]Fixed the formating[/edit]

  3. #13

    Re: A little security help please

    chown newowner:newgroup /name/of/file
    It's supposed to be a period, not a colon, between the names.

  4. #14
    Junior Member
    Join Date
    May 2001
    Posts
    53

    Re: A little security help please

    Well, I'm on a windows machine here at work right now *> so I can't check my man page, but the online man pages here say its a colon.

    chown [OPTION]... OWNER[:[GROUP]] FILE... chown [OPTION]... :GROUP FILE... chown [OPTION]... --reference=RFILE FILE...

  5. #15

    Re: A little security help please

    Weird, the colon works on my system. I've just always used a period...

  6. #16

    Re: A little security help please

    Well heres the output on /bin/su:
    Code:
    -rwxrwxrwx  1 rick420 wheel    18172 Sep 14 11:16 su*
    What exactly do I need to do to get me back to su'ing so I can go on fixing up this box. Thanks guys

  7. #17

    Re: A little security help please

    -rwxrwxrwx 1 rick420 wheel 18172 Sep 14 11:16 su*
    su is not setuid, this is your problem.

    As root, run this:

    chmod o+s /bin/su

    and it should work.

  8. #18

    Re: A little security help please

    You want su to be:

    Code:
    -rwsr-xr-x 1 root root

  9. #19

    Re: A little security help please

    Oops! Yeah, having it world writeable is really bad, too

    Do this command, it'll get you fixed right up:

    chmod 4750 /bin/su
    chown root.wheel /bin/su

    (you also don't want it to be world readable or world executeable. The whole point of the wheel group is that only the people in it can use su, thus 4750 and not 4755).

    Anyway. The above command will give it the right permissions, hope this helps.

  10. #20

    Re: A little security help please

    Is there a way for me to do this remotely? I mean I know how to edit lilo.conf, but I cant get in as root to do it. I disabled logging in as root from ssh and if I reboot it will kernel panic b/c the default kernel is not working properly (forgot to change the good kernel to the default before). I ask b/c I am stuck at work all day and then class afterwards so I wont be home for like 12 hours. I would like to get this fixed soon if possible, wanna start compiling a new working kernel while Im gone all day. Thanks

Similar Threads

  1. Security
    By jj0493 in forum Windows - General Topics
    Replies: 1
    Last Post: 01-14-2007, 04:24 AM
  2. PC Security
    By Ishtar in forum Windows - General Topics
    Replies: 5
    Last Post: 02-17-2005, 11:12 PM
  3. Security
    By pinehead in forum Linux - General Topics
    Replies: 1
    Last Post: 07-30-2002, 02:47 AM
  4. Your Security
    By Ashcrow in forum Linux - Software, Applications & Programming
    Replies: 9
    Last Post: 06-10-2002, 03:05 AM
  5. *nix Security
    By Sekihmet in forum Announcements and Suggestions
    Replies: 2
    Last Post: 09-12-2001, 11:34 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •