diff options
author | wollman <wollman@FreeBSD.org> | 1994-09-19 21:28:28 +0000 |
---|---|---|
committer | wollman <wollman@FreeBSD.org> | 1994-09-19 21:28:28 +0000 |
commit | b269db3788caf2fc710b7ebadf9938855b8fae44 (patch) | |
tree | d60d8ba911367a37b6b663cab8c31b9c6b57f63c /share/examples/etc/security | |
parent | 297cf34bad448be3e36a92b33da13f8e47440ddc (diff) | |
download | FreeBSD-src-b269db3788caf2fc710b7ebadf9938855b8fae44.zip FreeBSD-src-b269db3788caf2fc710b7ebadf9938855b8fae44.tar.gz |
Install /etc from the same source as /usr/share/examples/etc (mostly).
Diffstat (limited to 'share/examples/etc/security')
-rw-r--r-- | share/examples/etc/security | 41 |
1 files changed, 41 insertions, 0 deletions
diff --git a/share/examples/etc/security b/share/examples/etc/security new file mode 100644 index 0000000..76d5a6c --- /dev/null +++ b/share/examples/etc/security @@ -0,0 +1,41 @@ +#!/bin/sh - +# +# @(#)security 5.3 (Berkeley) 5/28/91 +# $Id: security,v 1.6 1994/01/22 10:54:13 rgrimes Exp $ +# +PATH=/sbin:/bin:/usr/bin + +host=`hostname -s` +echo "Subject: $host security check output" + +LOG=/var/log +TMP=/tmp/_secure.$$ + +umask 027 + +echo "checking setuid files and devices:" + +# don't have ncheck, but this does the equivalent of the commented out block. +# note that one of the original problem, the possibility of overrunning +# the args to ls, is still here... +# +MP=`mount -t ufs | sed 's;/dev/;&r;' | awk '{ print $3 }'` +set $MP +while test $# -ge 1; do + mount=$1 + shift + find $mount -xdev -perm -u+s -or -perm -g+s | sort +done | xargs -n 20 ls -lgTd > $TMP + +if cmp $LOG/setuid.today $TMP >/dev/null; then :; else + echo "$host setuid/device diffs:" + diff $LOG/setuid.today $TMP + mv $LOG/setuid.today $LOG/setuid.yesterday + mv $TMP $LOG/setuid.today +fi +rm -f $TMP + +echo "" +echo "" +echo "checking for uids of 0:" +awk 'BEGIN {FS=":"} $3=="0" {print $1,$3}' /etc/master.passwd |