Path: utzoo!attcan!uunet!ncrlnk!ncrcae!hubcap!gatech!bloom-beacon!apple!bionet!agate!saturn!ssyx!ulmo
From: ulmo@ssyx.ucsc.edu (scritzifchisted ulmo qzutvchsxik)
Newsgroups: ca.unix,comp.unix.wizards
Subject: Re: Internet Virus: SunOS patches
Message-ID: <5411@saturn.ucsc.edu>
Date: 9 Nov 88 03:57:37 GMT
References: <76493@sun.uucp>
Sender: usenet@saturn.ucsc.edu
Reply-To: ulmo@ssyx.ucsc.edu
Lines: 29

I'm a totally ignorant Unix user, but there are a few common sense things
I might add to this having to do with permissions of old copies lying around,
in case you didn't remember:

In article <76493@sun.uucp> chuq@plaid.Sun.COM (Chuq Von Rospach) writes:
>Patching sendmail:
>	2) make a copy of sendmail
>		# cd /usr/lib
>		# cp sendmail sendmail.debug

		# chmod 644 sendmail.debug
			[or something as effective]
			[use chmod 000 if you're totally paranoid]

>Installing a new fingerd:
>	% su
>	# cp in.fingerd /usr/etc/in.fingerd.new
>	# cd /usr/etc
>	# mv in.fingerd in.fingerd.orig

	# chmod 644 in.fingerd.orig


I know, this has got to be really petty.  But, now that everyone knows
how debug works, it's probably best to make sure someone doesn't use those
good old root powers for something they've been wanting to do for awhile ...
(on the most part, I guess people are pretty good about this sort of thing).

(I have no affiliation, so ignore any implied organization.)