On Mon, Oct 22, 2001 at 12:16:45PM -0400, Trond Eivind Glomsr�d wrote: > Aaron Konstam <[EMAIL PROTECTED]> writes: > > > On Mon, Oct 22, 2001 at 08:25:41AM -0400, [EMAIL PROTECTED] wrote: > > > This is just a note, came up in a user group. YOU ALL SHOULD CHECK THIS OUT > > > ON YOUR SYSTEMS. /sbin/halt (the file that shutdown and reboot point at) > > > has permission of 755 but unlike shutdown has no restriction for normal > > > users. IE...anyone can shutdown the system whenever they feel like it. > > > Does anyone know the mechanism that actually restricts non-root users in the > > > shutdown command? It also has permission set to 755. > > > > This is undesirable but has been true for a long time on RedHat. Normal > > users can halt them and reboot them. > > Only if you are logged in at the console. > > -- I agree you have to be logged in at the console. But I guess I am unix predjudiced but why should a normal user ever be able to halt or reboot a machine. Sounds like a security hole to me. -- ------------------------------------------- Aaron Konstam Computer Science Trinity University 715 Stadium Dr. San Antonio, TX 78212-7200
telephone: (210)-999-7484 email:[EMAIL PROTECTED] _______________________________________________ Seawolf-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/seawolf-list
