[Bug 51085] Re: scponlyc has SUID not set
aivarotsing
aivar at mailer.ee
Thu Mar 19 23:06:59 UTC 2009
The bug is still there. Scponly is unusable by default in Debian Etch 32-bit 2.6.18-6 (updated today) before suid bit. Hours to fix, minutes to decide as unusable package. Scponly gives big value to Linux server or workstation box and there are only very very few acceptable ways to use it without chroot. I see only root may use it... But what purpose? Total points given to package implementation: 0, none, nicht, (), [], zero, {}...
This may be also security risk - people like me, half-linuxmen, they may risk to expose computer to people/world using for fast problem resolution scponly when scponlyc doesn't work... and forgetting or not thinking about cd / possibility. Today big amount of hacking has made by scripts/programs, so if there is login available, they (robot, not they) send a script to test which folders are with write and execute permissions available. One half-stupid decision and you may be a terrorist :/
Debian is today better than ever, lets take some steps more! Moving ass is sometimes simpler than mind but lets try! The mind!
--
scponlyc has SUID not set
https://bugs.launchpad.net/bugs/51085
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list