Re: Cron Security
- From: Allen Kistler <ackistler@xxxxxxxxx>
- Date: Fri, 02 Feb 2007 19:23:34 GMT
blmblm@xxxxxxxxxxxxx wrote:
In article <5W4vh.66890$qO4.14995@xxxxxxxxxxxxxxxxxxxxxxxxxx>,
Allen Kistler <ackistler@xxxxxxxxx> wrote:
Jenny wrote:
We have a request from our Database Administrator where they wanted usThe rule of thumb is to deny access to crond by everyone except root.
to grant them the access to submit cron job using the oracle ID. Just
wondering, is there any security issue if we allow oracle ID to be able
to submit cron job? Please advise.
crond runs as root, so allowing others access provides an opportunity
for a local root compromise.
Can you say a little more about what kind of compromise you have in
mind here? Experiment (on an FC4 system) suggests that a cron job
submitted by a non-root user runs with that user's ID and can only
do things permitted to that user, which is how I'd think it would be.
So you must have in mind something more sophisticated -- ?
[snip]
cron runs as root, so anything that provides input to it can potentially
compromise root. cron "su"s to the user after (after, after, after...)
reading the user's crontab.
.
- Prev by Date: Re: I'm getting attacked
- Next by Date: Nessus - no plugins
- Previous by thread: Keylogger software
- Next by thread: Nessus - no plugins
- Index(es):
Relevant Pages
|
|