Randy (this is the LSB-FHS testset) I have cc'd this to the lsb-test list for comment. This seems sensible and a possible reason to waive the test, but perhaps there is a need for users to be able to invoke login directly? regards Andrew
On Dec 10, 10:27am in "/bin/login VSX test ", [EMAIL PROTECTED] wrote: > > The current VSX test suite gives a FAIL result is /bin/login > has permissions like: > > -rwx------ 1 root root 39736 Jul 5 04:23 /bin/login > > 520|0 17 4880 1 1|Reference 3.4-17 (A) > 520|0 17 4880 1 2|The implementation provides an exec-able version of the login > 520|0 17 4880 1 3|utility in the /bin directory. > 220|0 17 1 01:02:31|FAIL > > Usually /bin/login is executed by a getty, which runs as root. > > On page 304 in the book "Real World Linux Security - Intrusion Prevention, > Detection and Recovery" (ISBN 0-13-028187-5) there is a warning in bold > type: > > "Additionally, it is very important to prevent ordinary users from > invoking /bin/login." > > -- > Randy Hron >-- End of excerpt from [EMAIL PROTECTED]
