World writeable files can be modified by any user on the system. Generally
removing write access for the "other" category (chmod o-w ) is advisable, but
always consult the relevant documentation in order to avoid breaking any
application dependencies on a particular file. Run the following script to print
a list of world writeable files to screen. These files should then be reviewed
and if possible the world writeable permissions removed.
#!/bin/bash
for part in `awk '($3 == "ext2" || $3 == "ext3") { print $2 }' /etc/fstab`
do
find $part -xdev -perm -0002 -type f -print | less
done
No comments:
Post a Comment