https://community.hpe.com/t5/operating-system-hp-ux/telnet-ld-library-path/m-p/2823617#M754713 After Cybercop scan, a vulnerability of my workstation (HPUX10.20) was found: 'Telnet LD_LIBRARY_PATH'.<BR /> How to resolve it? Fri, 11 Oct 2002 03:48:10 GMT Platinum 2002-10-11T03:48:10Z https://community.hpe.com/t5/operating-system-hp-ux/telnet-ld-library-path/m-p/2823617#M754713 After Cybercop scan, a vulnerability of my workstation (HPUX10.20) was found: 'Telnet LD_LIBRARY_PATH'.<BR /> How to resolve it? Fri, 11 Oct 2002 03:48:10 GMT https://community.hpe.com/t5/operating-system-hp-ux/telnet-ld-library-path/m-p/2823617#M754713 Platinum 2002-10-11T03:48:10Z https://community.hpe.com/t5/operating-system-hp-ux/telnet-ld-library-path/m-p/2823618#M754714 Have a look at this posting:<BR /><BR /><A href="http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x87ce35067c18d6118ff40090279cd0f9,00.html" target="_blank">http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x87ce35067c18d6118ff40090279cd0f9,00.html</A><BR /><BR />You could also look into utilising HP-UX Bastille for a second opinion.<BR /><A href="http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=B6849AA" target="_blank">http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=B6849AA</A> Fri, 11 Oct 2002 04:04:29 GMT https://community.hpe.com/t5/operating-system-hp-ux/telnet-ld-library-path/m-p/2823618#M754714 Michael Tully 2002-10-11T04:04:29Z https://community.hpe.com/t5/operating-system-hp-ux/telnet-ld-library-path/m-p/2823619#M754715 As long as the suid bit is not set on telnet (the one that Cybercop found with the problem), then this is not a security problem. LD_LIBRARY_PATH and SHLIB_PATH can in some cases be used to modify the behavior of a binary.<BR /><BR />If, however, no suid bit is set, then the user could instead copy the binary and hack it himself to do whatever he wanted. It would still run in that user's process space; there would be no additional risks of privilege elevation.<BR /><BR />As far as Bastille is concerned, it currently only supports HP-UX 11.00 and 11.11. However, if you were to run it, it would recommend that you change to Secure Shell. Telnet is by nature a clear-text, spoofable protocol. It's still around because a lot of people are used to it, but it can be completely replaced with Secure Shell which uses an encrypted, spoof-protected protocol.<BR /><BR />If you care enough about security to run Cybercop, then it's probably best to start running secure protocols to start with.<BR /><BR />Now, if you'd like to make Cypercop stop complaining about a false alarm, the 'chatr' command may be used to modify the binary to get rid of LD_LIBRARY_PATH. Be careful...if you depend on telnet and it breaks, then you'll be a bit stuck. (I'd give more details, but I don't want to confuse the issue talking about telnet vs. telnetd...and I don't know which Cybercop is really complaining about.) Sat, 12 Oct 2002 15:13:04 GMT https://community.hpe.com/t5/operating-system-hp-ux/telnet-ld-library-path/m-p/2823619#M754715 Keith Buck 2002-10-12T15:13:04Z