IC71821: reset_diragent_keys has excessive file Permissions

 

APAR status

  • Closed as fixed if next.

Error description

  • The Common agent command reset_diragent_keys had file permission
    of 754 allowing an operator in the system group to do damage to
    the system and further fails badly with all sorts of errors due
    to insufficient privileges for programs calls.
    
    Vulnerability Summary
    
    These improper permissions are a potential security problem for
    customers, since technically adept users with limited account
    permissions could use these files to execute code which would
    otherwise be restricted.
    
    Impact: Potential security exposure
    
    Threat Level:
    
    Medium
    

Local fix

Problem summary

  • Vulnerability: Improper permissions causes potential damage
    to the system
    
        Platforms: AIX 5.3 TL11 system
    
        Director Agent Version: 6.2.0
    
        SOLUTION: The permission of reset_diragent_keys is set to
    500.
    

Problem conclusion

Temporary fix

Comments

APAR Information

  • APAR number

    IC71821

  • Reported component name

    IBM DIR AGT AIX

  • Reported component ID

    5765DRPAA

  • Reported release

    620

  • Status

    CLOSED FIN

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2010-10-11

  • Closed date

    2010-11-11

  • Last modified date

    2010-11-11

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

Applicable component levels

  • R621 PSY

       UP

Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

IBM Systems Director on POWER

Software version:

620

Reference #:

IC71821

Modified date:

2010-11-11

Translate my page

Machine Translation

Content navigation