The COPS Security Checker System

Get BibTex-formatted data

Download

PDF

Author

Dan Farmer,Eugene H. Spafford

Tech report number

CERIAS TR 1999-13

Entry type

inproceedings

Abstract

In the past several years, there have been a large number of published works that have graphically described a wide variety of security problems particular to UNIX. Without fail, the same problems have been discussed over and over again, describing the problems with SUID (set user ID) programs, improper file permissions, and bad passwords (to name a few). There are two common characteristics to each of these problems: first, they are usually simple to correct, if found; second, they are fairly easy to detect. Since almost all systems have fairly equivalent problems, it seems appropriate to create a tool to detect potential security problems as an aid to system admin- istrators. This paper describes one such tool: COPS (Computer Oracle and Password System) is a freely-available, reconfigurable set of programs and shell scripts that enable system administrators to check for possible security holes in their systems. This paper briefly describes the system. Included are the underlying design goals, the functions provided by the tool, possible extensions, and some experiences gained from its use. We also include information on how to obtain a copy of the initial COPS release.

Download

PDF

Date

1990 – June – 11-15

Booktitle

USENIX Summer Conference

Key alpha

Farmer

Pages

165-170

Publication Date

1900-01-01

Location

A hard-copy of this is in the Papers Cabinet

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Inproceedings{ Farmer,
	title = "The COPS Security Checker System",
	author = "Dan Farmer,Eugene H. Spafford",
	year = "1990",
	month = "June",
	booktitle = "USENIX Summer Conference",
	pages = "165-170",
	day = "11-15",
	abstract = "In the past several years, there have been a large number of published works that have graphically described a wide variety of security problems particular to UNIX. Without fail, the same problems have been discussed over and over again, describing the problems with SUID (set user ID) programs, improper file permissions, and bad passwords (to name a few). There are two common characteristics to each of these problems: first, they are usually simple to correct, if found; second, they are fairly easy to detect. Since almost all systems have fairly equivalent problems, it seems appropriate to create a tool to detect potential security problems as an aid to system admin- istrators. This paper describes one such tool: COPS (Computer Oracle and Password System) is a freely-available, reconfigurable set of programs and shell scripts that enable system administrators to check for possible security holes in their systems. This paper briefly describes the system. Included are the underlying design goals, the functions provided by the tool, possible extensions, and some experiences gained from its use. We also include information on how to obtain a copy of the initial COPS release.",
}