Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!mnetor!uunet!seismo!mcvax!enea!pvab!robert
From: robert@pvab.UUCP (Robert Claeson)
Newsgroups: comp.unix.questions,comp.bugs.sys5
Subject: SysV lp spooler a security hole
Message-ID: <313@pvab.UUCP>
Date: Sun, 6-Sep-87 14:52:40 EDT
Article-I.D.: pvab.313
Posted: Sun Sep  6 14:52:40 1987
Date-Received: Sun, 6-Sep-87 21:25:35 EDT
Organization: Statskonsult Programvaruhuset AB, Sweden
Lines: 23
Xref: mnetor comp.unix.questions:3919 comp.bugs.sys5:184

The System V print spooler runs as a SUID 'lp' command, which
means that the files I want to print must be readable by others or,
if I'm lucky, by the group. This implies that anyone on the system
will be able to print, copy or read the files I want to be able
to print.

Please don't mention crypt(1) as a solution if I have data I want to
keep secret in my files. Crypt is

a) rather easy to break

and

b) not distributed with the UNIX versions exported from the USA, and
   I'm using such an export version.

Shouldn't the System V print spooler be considered as a serious security
hole? Will it ever fit into a "secret" UNIX system? I understand that Gould,
Sun and the other vendors working on secret UNIX systems use the BSD spooler.
-- 
SNAIL:	Robert Claeson, PVAB, P.O. Box 4040, S-171 04 Solna, Sweden
UUCP:	{seismo,mcvax,munnari}!enea!pvab!robert
ARPA:	enea!pvab!robert@seismo.arpa