Lists

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

Re: a Bootstrap Namespace question

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: a Bootstrap Namespace question

Subject: Re: a Bootstrap Namespace question
From: Jeremy Pereira <email@hidden>
Date: Sun, 3 Jun 2007 17:37:20 +0100


On 1 Jun 2007, at 08:18, Serge Cohen wrote:

Thanks for the information, it is now much clearer why we did not achieve anything using this route.... If the SUID shell scripts are deactivated, I guess it is for a proper reason, and I'd rather stay with that default settings. Is this overly cautious to keep them deactivated ?

No, it's not overly cautious. If you have a root setuid shell script, it is almost trivially easy to get root access. I imagine you could, for instance, put a directory in your home directory in your path ahead of /bin and /usr/bin, put a copy of the shell in that directory but give it the same name as some common command that's in the setuid script and then execute the script. When the script hits that command, it will instead execute your renamed shell - as root.

_______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-kernel mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden



References:  
  >Re: a Bootstrap Namespace question (From: Serge Cohen <email@hidden>)




Prev by Date:
Re: Reload VM hint? (James Bucanek)

Next by Date:
Error compiling darwin kernel

Previous by thread:
Re: a Bootstrap Namespace question

Next by thread:
Regarding Route Command source code

Index(es):

Date
Thread