[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] /tmp/-v ?

Subject: Re: [cobalt-security] /tmp/-v ?
From: "Carrie Bartkowiak" <ravencarrie@xxxxxxxx>
Date: Sun, 27 May 2001 05:12:45 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> well, it's not a system file so in my opinion it can be erased.
> what I do wonder about is the owner of the file, that is, root.
> it isn't a customer cgi script. unless your httpd runs as root (i
hope
> not!!!!),

When I do a 'top', I get a bunch of httpd running as root.  (!?)
Mostly they run as httpd, but there are a number of them running as
root, on both RaQ4 boxes.
Don't blame me, I didn't do it... *grin*
Guess it's a Cobalt thing.

> so it's either something the GUI did, or you did. or someone who
> has root did :\

I'm thinking maybe this person used the GUI to backup their site, and
this was a temporary dumping station or backup buffer for it?
Either way, I just removed it after reading your letter and nothing
fell over, so I suppose I'm good to go. ;)
Thanks!

CarrieB

Follow-Ups:
- Re: [cobalt-security] /tmp/-v ?
  - From: shimi
- Re: [cobalt-security] /tmp/-v ?
  - From: storage

References:
- Re: [cobalt-security] /tmp/-v ?
  - From: shimi

Prev by Date: Re: [cobalt-security] /tmp/-v ?
Next by Date: Re: [cobalt-security] /tmp/-v ?
Previous by thread: Re: [cobalt-security] /tmp/-v ?
Next by thread: Re: [cobalt-security] /tmp/-v ?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index