home *** CD-ROM | disk | FTP | other *** search
- Path: sparky!uunet!cis.ohio-state.edu!mica.berkeley.edu!jym
- From: jym@mica.berkeley.edu (Jym Dyer)
- Newsgroups: gnu.emacs.bug
- Subject: Re: movemail bug?
- Date: 25 Jan 1993 20:50:00 -0500
- Organization: The Naughty Peahen Party Line
- Lines: 30
- Sender: daemon@cis.ohio-state.edu
- Approved: bug-gnu-emacs@prep.ai.mit.edu
- Distribution: gnu
- Message-ID: <Jym.24Jan1993.1758@naughty-peahen>
- References: <1993Jan21.112654.6681@cs.nott.ac.uk>
-
- > I've been unable to persuade my sysadmin to make the movemail
- > routine setuid because they believe it will compromise system
- > security. I assume that they are referring to the bug that
- > I seem to remember being described in Clifford Stoll's book
- > `The Cukoo's Egg'.
-
- =o= That problem's been fixed long ago. See the file FAQ in
- the Emacs etc directory. I quote:
-
- > 1. the `movemail' incident (No, this is not a risk.)
- >
- > Cliff Stoll in his book "The Cuckoo's Egg" describes this in chapter 4.
- > The site at LBL had installed the `etc/movemail' program setuid root.
- > Since `movemail' had not been designed for this situation, a security
- > hole was created and users could get root priveleges.
- >
- > `movemail' has since been changed so that even if it is installed
- > setuid root this security hole will not be a result.
-
- =o= It should be noted that Stoll's description of the cause of
- the problem is exactly the opposite of reality: He claimed that
- the security hole was a bug in movemail, and contrasted it with
- security holes caused by sysadmins installing things wrong. As
- we can see above, the problem actually *was* caused by sysadmins
- installing things wrong.
-
- =o= Stoll should write an apology/retraction, and should see to
- it that it's distributed widely.
- <_Jym_>
-
-
