Create Account
Search
You are here: TDG Forum  >>  Texas Instruments SOMs and Development Kits  >>  OMAP35x, DM3730, AM3703 Torpedo SOM Development Kit  >>  /etc/shadow has the wrong permissions

Technical Discussion Group Forum

This forum is provided for user discussion. While Beacon EmbeddedWorks support staff and engineers participate, Beacon EmbeddedWorks does not guarantee the accuracy of all information within in the Technical Discussion Group (TDG).

The "Articles" forums provide brief Articles written by Beacon EmbeddedWorks engineers that address the most frequently asked technical questions.

To receive email notifications when updates are posted for a Beacon EmbeddedWorks product download, please subscribe to the TDG Forum of interest.

TDG Forum

PrevPrev Go to previous topic
NextNext Go to next topic
Last Post 03 Jun 2015 02:25 PM by  Adam Ford
/etc/shadow has the wrong permissions
 2 Replies
Sort:
You are not authorized to post a reply.
Author Messages
JS232
New Member
New Member
Posts:9


--
03 Jun 2015 08:26 AM

    In Torpedo Linux BPS v2.4-2 and v2.4-3, the deployed /etc/shadow is readable by other. This is not good security practice.

    # ls -l /etc/shadow
    -rw-r--r--    1 root     root          1118 Jun  3 13:05 /etc/shadow 

    What component of the build system creates the /etc/shadow file? 

     
    Adam Ford
    Advanced Member
    Advanced Member
    Posts:794


    --
    03 Jun 2015 08:54 AM
    I am not sure what's going on there.

    The build table shows it should have 600 for permissions, but it's does seem strange to be readable for others.

    I'm going to put in a question to the developers. Changing the permissions to 600 doesn't see to hurt anything on the surface. I was able to set the permissions, then change password, log out and log back in again.

    I'll let you know what I find and if it's a confirmed bug, I'll enter it into our system.

    Thank you for for reporting that.

    adam
    Adam Ford
    Advanced Member
    Advanced Member
    Posts:794


    --
    03 Jun 2015 02:25 PM
    Modify dislt/lfs-5.1/skell/skell-omap_logic.spec and after the mention of /usr/bin/startx add the line:

    %attr(0600, root, root) %{pfx}/etc/shadow

    run "./ltib" again, and the above should make rootfs/etc/shadow be owned by root, have the group root, and have permissions 0600.

    Let me know if that helps.

    adam
    You are not authorized to post a reply.

    Forums Texas Instruments SOMs and Development Kits OMAP35x, DM3730, AM3703 Torpedo SOM Development Kit