Date: Tue, 25 Jun 1996 09:52:01 +0200 (MET DST) From: J Wunsch <j@uriah.heep.sax.de> To: security@freebsd.org Cc: core@freebsd.org (FreeBSD core team) Subject: Re: I need help on this one - please help me track this guy down! Message-ID: <199606250752.JAA17768@uriah.heep.sax.de> In-Reply-To: <1092.835661388@critter.tfs.com> from Poul-Henning Kamp at "Jun 24, 96 05:09:48 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
As Poul-Henning Kamp wrote: > The binary is an ordinary shell with a setuid bit. Reminds me: many systems relinguish suidness and sgidness in a shell, our shell doesn't. Does anybody have a good reason why we should not do the same? It will of course only plug the worst hole once somebody got temporary root access, but something like cp /bin/sh ~/mysuidshell chown root ~/mysuidshell chmod 4755 ~/mysuidshell as a Troyan Horse will be unusable then. -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199606250752.JAA17768>