APAR status
Closed as fixed if next.
Error description
The Common agent command reset_diragent_keys had file permission of 754 allowing an operator in the system group to do damage to the system and further fails badly with all sorts of errors due to insufficient privileges for programs calls. Vulnerability Summary These improper permissions are a potential security problem for customers, since technically adept users with limited account permissions could use these files to execute code which would otherwise be restricted. Impact: Potential security exposure Threat Level: Medium
Local fix
Problem summary
Vulnerability: Improper permissions causes potential damage to the system Platforms: AIX 5.3 TL11 system Director Agent Version: 6.2.0 SOLUTION: The permission of reset_diragent_keys is set to 500.
Problem conclusion
Temporary fix
Comments
APAR Information
APAR number
IC71821
Reported component name
IBM DIR AGT AIX
Reported component ID
5765DRPAA
Reported release
620
Status
CLOSED FIN
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2010-10-11
Closed date
2010-11-11
Last modified date
2010-11-11
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Applicable component levels
R621 PSY
UP
Rate this page:
Average rating
Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.