IBM Support

IV51421: VERSIONED 5.2 WPAR IS OVER-PRIVILEGED

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

APAR status

  • Closed as program error.

Error description

  • Non-root users on versioned WPAR may be
    granted access to file objects that was
    not available on the original system.
    

Local fix

  • Reduce WPAR privileges:
    chwpar -S privs-=PV_DAC_,PV_DAC_R,PV_DAC_W
    

Problem summary

  • A non-root user who logs in to ftp on a 5.2 or 5.3 WPAR is able
    to access any file.
    

Problem conclusion

  • Corrected enforcement of permissions via ftp.
    

Temporary fix

Comments

APAR Information

  • APAR number

    IV51421

  • Reported component name

    AIX V7.1

  • Reported component ID

    5765H4000

  • Reported release

    710

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Submitted date

    2013-10-29

  • Closed date

    2013-10-29

  • Last modified date

    2013-10-29

  • APAR is sysrouted FROM one or more of the following:

    IV51384

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    AIX V7.1

  • Fixed component ID

    5765H4000

Applicable component levels

  • R710 PSY

       UP



Document information

More support for: AIX Enterprise Edition

Software version: 710

Operating system(s): AIX

Reference #: IV51421

Modified date: 29 October 2013