Feature Request:

Question

Feature Request:

Closed this issue 5 years ago · 2 comments

Check /etc/passwd writable

Answer 1 · 2018-08-27T09:21:15.000Z

Permissions of /etc/passwd are listed in the output for manual review, but I'm happy to add a separate alert to show if these are non-standard in the next version release.

Answer 2 · 2019-11-20T17:05:05.000Z

There are a few files that we might be interested in. After thinking about this, instead of pulling each out I think it's covered in 'can we read/write sensitive files' output, example below and hence closing request at this stage.

[-] Can we read/write sensitive files:
-rw-r--r-- 1 root root 1808 Nov 20 16:31 /etc/passwd
-rw-r--r-- 1 root root 842 Nov 20 16:31 /etc/group
-rw-r--r-- 1 root root 596 Jul 10 2018 /etc/profile
-rw-r----- 1 root shadow 1335 Nov 20 16:40 /etc/shadow