possible exploit risk

[scollins]

I just found an eggdrop process on one of our machines running from:

/var/netenberg/fantastico_de_luxe/master_files/Zen_Cart/cache/

I'm noticing several dirs chmod'd to 777 in /var/netenberg/fantastico_de_luxe/master_files/

Is this totally neccessary? What a huge risk this is...

[Mahendra]

We are aware of this (as it has been discussed a lot of times on the forum).

We have also prepared a strategy to overcome this potential problem. though we are yet to implement it.

[scollins]

Is it safe then to chmod them to something safer? Or are these 777 for reasons needed for the installs to work proper?

[Mahendra]

No. The permissions pre-set by Fantastico De Luxe are absolutely essential to the proper working of the installed scripts.

[bananaboy]

It looks like it's installed under CubeCart directory too. Lucky our programmer made a custom script that notifies us when there's any unknown processes running and automatically emails us and kills it.

Mahendra mentioned it was posted several times on other threads but when I did a search for "eggdrop", I just found this one. Where are the other threads about this?

--------------
20678 eggdrop
lrwxrwxrwx    1 nobody   nobody          0 Oct  6 21:09 /proc/20678/exe -> /var/netenberg/fantastico_de_luxe/master_files/CubeCart/pear/tmp/pri/matahati/eggdrop-1.6.12 (deleted)
./eggdrop

[scollins]

There are a few other threads about the 777 permissions. Search for 777 and you should find them. Looks like they've been aware of this for some time now. I hope it gets fixed soon. What a pain in my arse. We have over 1000 servers running fantastico.

[aussie]

There are a few other threads about the 777 permissions. Search for 777 and you should find them. Looks like they've been aware of this for some time now. I hope it gets fixed soon. What a pain in my arse. We have over 1000 servers running fantastico.

1,000 server? ye right!

[scollins]

1,000 server? ye right!

1492 active licenses to be exact. And that number grows every day.

[aussie]

1,000 server? ye right!

1492 active licenses to be exact. And that number grows every day.

Ah ha! so your making over 1mil a year? I have a friend who has 200 servers. His income by the end of this year will be over 750k. Now thats on 200 servers. So you have 7x what he has so you must be making 5.25 Mil a year. Hmm. Really?

[scollins]

Ah ha! so your making over 1mil a year? I have a friend who has 200 servers. His income by the end of this year will be over 750k. Now thats on 200 servers. So you have 7x what he has so you must be making 5.25 Mil a year. Hmm. Really?

This thread is not about our business, it is about the severity of this permissions issue. I'm not here to play games so go find a partner someplace else.

[aussie]

Ah ha! so your making over 1mil a year? I have a friend who has 200 servers. His income by the end of this year will be over 750k. Now thats on 200 servers. So you have 7x what he has so you must be making 5.25 Mil a year. Hmm. Really?

This thread is not about our business, it is about the severity of this permissions issue. I'm not here to play games so go find a partner someplace else.

Well you bought it up. If you want to image that you have 1400 servers then good on you. I doubt you do but you dont have to bullshit either.

[aussie]

I just found an eggdrop process on one of our machines running from:

/var/netenberg/fantastico_de_luxe/master_files/Zen_Cart/cache/

I'm noticing several dirs chmod'd to 777 in /var/netenberg/fantastico_de_luxe/master_files/

Is this totally neccessary? What a huge risk this is...

If you were running phpseuxec this would not be a problem. All directories are chmod 755.

[aussie]

I just found an eggdrop process on one of our machines running from:

/var/netenberg/fantastico_de_luxe/master_files/Zen_Cart/cache/

I'm noticing several dirs chmod'd to 777 in /var/netenberg/fantastico_de_luxe/master_files/

Is this totally neccessary? What a huge risk this is...

If you were running phpseuxec this would not be a problem. All directories are chmod 755 with the following exceptions;

Coppermine_Photo_Gallery
Moodle
PHProjekt
Siteframe
Soholaunch_Pro_Edition
ViPER_Guestbook

Maybe Netenburg can explain why these directories need to be 0777 while all the others are 0755? Under phpsuexec they should be 0755.

[Mahendra]

Maybe Netenburg can explain why these directories need to be 0777 while all the others are 0755? Under phpsuexec they should be 0755.

Hi,

Unfortunately this is a limitation of the internal design of Fantastico De Luxe. As I said earlier, we are trying to eliminate this at the source itself. Kindly co-operate with us for a few more releases till we put an end to this.

But, upon installation (in phpsuexec servers), we automatically change the permissions on all files to 755 (to overcome Internal Server Error).

[aussie]

But, upon installation (in phpsuexec servers), we automatically change the permissions on all files to 755 (to overcome Internal Server Error).

NO YOU DONT! Under phpsuexec on all my boxes the apps listed above have a directory permission of 0777. Maybe you should check your installer, updater. Sorry to burst your bubble.