Skip to main content
View All Products
Compute
Storage
Databases
Networking
Developer Tools
Delivery
Security
Services
Industries
Pricing
Community
Engage With Us
Explore Blog
Categories
570
  1. Cloud Consulting Services
    4
  2. Cloud Overviews
    42
  3. Compute
    9
  4. Containers (Kubernetes, Docker)
    31
  5. Databases
    18
  6. Developer Tools
    30
  7. Linode
    243
  8. Linux
    69
  9. Multicloud
    4
  10. Networking
    29
  11. Open Source
    5
  12. Partner Network
    7
  13. Security
    58
  14. Storage
    21
Authors 570
  1. Abe Massry 2
  2. Al Newkirk 1
  3. Alexander Newnham 2
  4. Andrew Sauber 1
  5. Andrew Stebbins 2
  6. Andy Stevens 4
  7. Bradley LaBoon 1
  8. Blair Lyon 11
  9. Billy Thompson 5
  10. Christopher Aker 176
  11. Cassie Bubnis 1
  12. Daniele Polencic 3
  13. David Monschein 2
  14. David Rodriguez 1
  15. Dan Spataro 2
  16. Elvis Segura 1
  17. Gardiner Bryant 1
  18. Holden Morris 4
  19. Hillary Wilmoth 56
  20. Jim Ackley 4
  21. Jessica Capuano Mora 1
  22. Justin Cobbett 11
  23. Jon Frederickson 1
  24. Jonathan Hill 2
  25. Justin Mitchel 4
  26. James Steel 5
  27. Jamie Sherkness 8
  28. Linode 52
  29. Linode Events 8
  30. The Linode Security Team 121
  31. The Linode Network & Security Teams 1
  32. LINQ 1
  33. Leslie Salazar 1
  34. Michelle Berg 1
  35. Mitch Donaberger 1
  36. Mike Fischler 1
  37. Mike Maney 9
  38. Maddie Presland 15
  39. Mike Quatrani 4
  40. Nathan Melehan 2
  41. Nigel Poulton 1
  42. Rick Myers 7
  43. Richard Tubb 1
  44. Sal Carrasco 1
  45. Shawn Michels 1
  46. Linode Support 12
  47. Tom Asaro 18
BlogLinuxCentOS WORLD-WRITABLE /etc/shadow file

CentOS WORLD-WRITABLE /etc/shadow file

Christopher Aker
Christopher Aker
October 4, 2004

The CentOS images (both the old and the recently updated version) have a world-writable /etc/shadow file. This image was in fact built from scratch and was not online at any point. I can only account this towards a mis-configuration of some kind when I built the image.

If you’ve deployed CentOS, please perform this as root:

[code]chmod 400 /etc/shadow[/code]
This has been corrected in the currently available CentOS image.

I’ve also sent out emails to everyone who has a CentOS image deployed.

My apologies,
-Chris

You might also like...

Linux Command Line Tips | Use The ‘tr’ Command to Transform, Replace, and Remove Characters

In this video, @LearnLinuxTV explains the tr command and also gives examples of common ways to utilize this command in your code.
Linux

Use the Man Command to Learn Any Linux Command | Top Docs With Learn Linux TV

In this video, Jay demonstrates different ways the man command can teach you about different programs and commands in Linux.
Linux
Linux Superhero Jay LaCroix featuring the power of curl on Linux.

Supercharge Your Workflow with cURL | Understanding The cURL Command-Line Tool

In this video, @LearnLinuxTV explains the cURL (Client URL) command and how it interacts with restful APIs.
Linux

Comments (1)

  1. Author Photo
    caker

    I’m pretty sure that if you’ve ever added a user or changed a password that the permissions are corrected automatically.

    -Chris

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *