NetBSD-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

bin/47362: cron is too restrictive on file permissions

>Number:         47362
>Category:       bin
>Synopsis:       cron is too restrictive on file permissions
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    bin-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Mon Dec 24 17:10:00 +0000 2012
>Originator:     Brian Marcotte
>Release:        NetBSD 6.0
        Public Access Networks, Corp.
System: NetBSD 6.0 NetBSD 6.0 (PANIX-XEN-STD) #0: Sun Oct 14 
15:57:33 EDT 2012
Architecture: i386
Machine: i386
We were getting these in the syslogs when we upgraded to NetBSD 6:

        (root) BAD FILE MODE (tabs/root)

The file is read-only because it is in RCS:

        -r--------  1 root  wheel  961 Mar 13  2012 /var/cron/tabs/root

I don't believe it's a security problem for the file to be read-only by
root. Cron should allow this mode.

In src/external/bsd/cron/dist/database.c, process_crontab():

I'm not sure why "eqmode" is needed at all. It seems to me that just
setting "badmode" to 077 is enough (which may get changed to 022 if
fname is NULL).

Home | Main Index | Thread Index | Old Index