[OS X TeX] OT: effective Macintosh Trojan in the wild

Bruno Voisin bvoisin at mac.com
Sun May 8 19:58:08 CEST 2005

Le 8 mai 05 à 19:14, Aaron Jackson a écrit :

> The whole reason for a clamav user is strictly for UNIX security  
> purposes.  Basically, you don't want a process to run with root  
> privileges unless absolutely necessary.  Also along the lines of  
> UNIX security, a proper implementation should NEVER allow the  
> clamav user to login i.e. there should be no valid password  
> associated with the clamav user.  I would assume the people at  
> apple understand this and made it so.  I'm not going to worry about  
> this...

The clamav user created by clamXav has shell /sbin/nologin (as  
revealed by NetInfo Manager), thus I assume this means this user  
can't login.

Bruno Voisin--------------------- Info ---------------------
Mac-TeX Website: http://www.esm.psu.edu/mac-tex/
           & FAQ: http://latex.yauh.de/faq/
TeX FAQ: http://www.tex.ac.uk/faq
List Post: <mailto:MacOSX-TeX at email.esm.psu.edu>

More information about the macostex-archives mailing list