Preventing Local Attacks on Unix-Based Servers

Previous page
Table of content
Next page

Most of the local security problems Informix suffers from on Unix-based platforms arise from the setuid root programs and setuid Informix programs. To list all such programs, change to the $INFORMIXDIR/bin directory and issue the following command: 

 find ./ -perm +4000

This will list all setuid programs in the bin directory. The simplest way to protect against local users attacking setuid programs is to remove the execute permission from "others"; in fact, simply remove all permissions from "others": 

 chmod  * o-rwx

Previous page
Table of content
Next page
Database Hacker's Handbook. Defending Database Servers
The Database Hackers Handbook: Defending Database Servers
ISBN: 0764578014
EAN: 2147483647
Year: 2003
Pages: 156
Authors: David Litchfield, Chris Anley, John Heasman, Bill Grindlay
BUY ON AMAZON
CompTIA Project+ Study Guide: Exam PK0-003
Absolute Beginner[ap]s Guide to Project Management
Professional Java Native Interfaces with SWT/JFace (Programmer to Programmer)
WebLogic: The Definitive Guide
Snort Cookbook
Managing Enterprise Systems with the Windows Script Host
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy