|
|
@@ -31,7 +31,8 @@ Configuration: none
|
|
|
Audit filesystem permissions for possible security issues:
|
|
|
* World-readable private keys (ssh, Let's Encrypt) and passwords (Git, SVN, Sympa, Dolibarr, ...)
|
|
|
* World-writable configuration files and scripts (/etc/init.d/*, /etc/profile, ...)
|
|
|
-* World-writable executable search path ($PATH), python search path, and perl include path
|
|
|
+* World-writable executable search path (ie $PATH), or perl/python/ruby search path
|
|
|
+* Process running a world-writable executable, or world-writable bash/perl/python script
|
|
|
* Sensitive information stored in the wrong place (passwords in /etc/passwd rather than /etc/shadow)
|
|
|
|
|
|
This tool only does file permissions checks, and does it imperfectly.
|
root