17758 – Consider running sysklogd with lower privilege

Bug 17758 - Consider running sysklogd with lower privilege

Summary: Consider running sysklogd with lower privilege

Keywords:
Status:	CLOSED DUPLICATE of bug 17682
Alias:	None
Product:	Red Hat Linux
Classification:	Retired
Component:	sysklogd
Sub Component:
Version:	7.1
Hardware:	i386
OS:	Linux
Priority:	low
Severity:	medium
Target Milestone:	---
Assignee:	Bill Nottingham
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2000-09-20 23:22 UTC by Chris Evans
Modified:	2014-03-17 02:16 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2000-09-20 23:22:59 UTC
Embargoed:

Attachments	(Terms of Use)

Description Chris Evans 2000-09-20 23:22:57 UTC

Hi,

Well this is quite relevant after the recent klogd security hole.

If you think about it, syslogd and klogd are doing little more than writing
to a bunch of files. There is little reason to require "root" for this.

I'm not the first person to realize this. Here are some links to two
patches to run syslogd and
klogd with lower privilege. These links were both provided during very
recent discussion on
the security-audit list.

http://www.engin.umich.edu/caen/systems/Linux/code/patches/sysklogd-1.3-security.patch

ftp://ftp.openwall.com/pvt/sysklogd-1.3-31-owl-klogd-drop-root.diff.gz

Please consider for RH7.1 inclusion. Hopefully, we can head towards the
situation where
anything running in a default config, has been patched to run with
genuinely minimal
privilege.

Cheers
Chris

Comment 1 Bill Nottingham 2000-11-13 20:23:09 UTC


*** This bug has been marked as a duplicate of 17682 ***

Note You need to log in before you can comment on or make changes to this bug.