Path: utzoo!attcan!uunet!samsung!zaphod.mps.ohio-state.edu!unix.cis.pitt.edu!dsinc!cs.widener.edu!brendan
From: brendan@cs.widener.edu (Brendan Kehoe)
Newsgroups: comp.unix.ultrix
Subject: Re: Ultrix x.x /etc/rc.local security holes via /tmp/t1
Message-ID: <1991Feb28.131938.29631@cs.widener.edu>
Date: 28 Feb 91 13:19:38 GMT
References: <1991Feb28.083356.6769@watcgl.waterloo.edu>
Organization: Widener CS Dept
Lines: 14

In <1991Feb28.083356.6769@watcgl.waterloo.edu>, idallen@watcgl.waterloo.edu writes:
>On Ultrix (any version), if you happen to have directories named
>/tmp/t1 or /tmp/t2, all kinds of nasty things will happen to your
>/etc/motd and /etc/gettytab because /etc/rc.local assumes it can write
>to these tmp names as files, and it edits the contents into your
>/etc/motd and /etc/gettytab.

  Suns have the same problem; just change the /tmp/t1 and /tmp/t2
  names to /etc/t1 and /etc/t2 -- since rc.local's run as root, you'll
  be fine.

-- 
     Brendan Kehoe - Widener Sun Network Manager - brendan@cs.widener.edu
  Widener University in Chester, PA                A Bloody Sun-Dec War Zone