Xref: utzoo comp.unix.xenix.sco:2260 comp.unix.admin:1628
Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!swrinde!zaphod.mps.ohio-state.edu!caen!ox.com!math.fu-berlin.de!fauern!unido!cat!incom!odbffm.incom.de!oli
From: oli@odbffm.incom.de (Oliver Boehmer)
Newsgroups: comp.unix.xenix.sco,comp.unix.admin,sub.security
Subject: Re: WARNING: SCO-Xenix game "hack", setuid root NO DANGER, OOOOPS
Message-ID: <1991Apr18.213843.18297@odbffm.incom.de>
Date: 18 Apr 91 21:38:43 GMT
References: <1991Apr17.192850.10450@odbffm.incom.de>
Organization: Oli's Datenbagger Frankfurt
Lines: 24

In <1991Apr17.192850.10450@odbffm.incom.de> oli@odbffm.incom.de (Oliver Boehmer) writes:

>Hi!
>When I recently went through the setuid-files on my system, I found, that
>/usr/games/lib/hackdir/hack (the actual nethack-program) is setuid-root.
>This version is part of SCO-XENIX Games and was installed with this 
>permissions by the SCO-Utility custom.
>HACK	x4511	root/root	1	./usr/games/lib/hackdir/hack	01
>Hack allows shell escapes and I don't have to say what this means.

>If it wouldn't be so serious, I'd laugh about this. But isn't it the right
>filename for something like that?

>Anyway, it's about time you go through your setuid-files
>	find / \( -perm -4000 -o -perm -6000 \) -print

>oli

Ooooops, I just found out, that the permissions are reset before starting
the shell, so that there is no potential danger. 
I'm sorry about this.
But one thing I'd really like to know: Why the &/%$"&/ is hack setuid? 
Oh well. 
oli
-- 
Oliver Boehmer, Frankfurt, Germany           oli@odbffm.incom.de
+49-69-331461 (voice) +49-60-308265 (1200/2400)
If God is perfect, why did He create discontinuous functions?