Path: utzoo!utgpu!watmath!clyde!att!osu-cis!tut.cis.ohio-state.edu!mailrus!ames!vsi1!versatc!tran
From: tran@versatc.UUCP (Tony Tran)
Newsgroups: comp.unix.questions
Subject: Re: Security problem with local root user on SUN workstations
Summary: The BAD side effect of tightening up security on SUN/NFS (3.x)
Keywords: local root
Message-ID: <3747@versatc.UUCP>
Date: 18 Nov 88 04:39:31 GMT
References: <3228@versatc.UUCP> <2374@ssc-vax.UUCP>
Organization: Versatec, Santa Clara, Ca. 95051
Lines: 32

In article <2374@ssc-vax.UUCP>, ray3rd@ssc-vax.UUCP (Ray E Saddler III) writes:
> In article <3228@versatc.UUCP>, tran@versatc.UUCP (Tony Tran) writes:
> >  We run into a big security problem on our SUN local network when a user
> >  who has access to root (on the local workstation) decides to "su" to
> >  any valid username on the YP server, and therefore access any file
> >  he wants.
> >  Since I cannot keep track of all local root users in the SUN NFS
> >  environment, how can I get around this serious problem ?

> >  Any hint/advice would be greatly appreciated.
> 
> Tighten up your allowance to root access.  


   I tried to tighten up the security by removing the "+" sign in
   /etc/hosts.equiv, and bingo, it seemed to fix the above leak.

   Local root user can "su" to anybody, but as soon as he rlogin
   to another SUN, it will prompt him for the password.

   HOWEVER, we no longer can rsh from our station to the YP server,
   which happens to have the only networked laser printer.

   Needless to say, we can no longer print remotely to our only
   network laser printer.

   Any idea how to fix the network printer problem?

   Tony Tran

   PS. BTW, I heard that secure NFS on SUN OS 4.0.1 will fix this
   	problem but I am not sure