Bug 250685 - Crontab security vulnerabilty - please set bits: sudo chmod 600 /etc/crontab
Summary: Crontab security vulnerabilty - please set bits: sudo chmod 600 /etc/crontab
Status: Closed Not Enough Information
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: vimanuelt
URL:
Keywords:
: 250686 (view as bug list)
Depends on:
Blocks:
 
Reported: 2020-10-28 09:11 UTC by vimanuelt
Modified: 2022-01-25 21:43 UTC (History)
5 users (show)

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description vimanuelt 2020-10-28 09:11:53 UTC
[Crontab security vulnerability]

To improve security, please set bits on /etc/crontab directory as follows:

sudo chmod 600 /etc/crontab
Comment 1 Tatsuki Makino 2020-10-28 23:07:26 UTC
A more reliable solution :)

pkg delete -f sudo

Don't install something like that and call it vulnerable :)
Comment 2 Kurt Jaeger freebsd_committer freebsd_triage 2020-10-29 18:56:15 UTC
(In reply to vimanuelt from comment #0)
How can the current permission be exploited ?
Comment 3 Xin LI freebsd_committer freebsd_triage 2020-11-01 02:36:12 UTC
Feedback requested.
Comment 4 Xin LI freebsd_committer freebsd_triage 2020-11-01 02:36:26 UTC
*** Bug 250686 has been marked as a duplicate of this bug. ***
Comment 5 Alan Somers freebsd_committer freebsd_triage 2022-01-25 21:43:07 UTC
Closing for lack of feedback.