Patch-ID#  100185-01
Keywords: security
Synopsis: /etc/rc.local can be used to destroy passwd
Date: 14/Dec/90
 
SunOS release: 4.1.1, 4.1, 4.0.3, 4.0, 3.5
 
Unbundled Product:
 
Unbundled Release:
 
Topic: 
 
BugId's fixed with this patch: 1048102

Architectures for which this patch is available: sun3, sun3x, sun4, sun4c

Patches which may conflict with this patch:

Obsoleted by:

Problem Description:

  In  /etc/rc.local there are some lines that look like:


dmesg | grep SunOS | tail -1 | sed -e "s/^.*SunOS/SunOS/" >/tmp/t1
tail +2 /etc/motd >>/tmp/t1
mv /tmp/t1 /etc/motd
chmod 666 /etc/motd


If you do:

ln -s /etc/passwd /tmp/t1

  Then reboot, goodbye /etc/passwd, as we know it.


INSTALL:

FIx is to change the lines to:


dmesg | grep SunOS | tail -1 | sed -e "s/^.*SunOS/SunOS/" >/etc/motd.t1
tail +2 /etc/motd >>/etc/motd.t1
mv /etc/motd.t1 /etc/motd
chmod 644 /etc/motd