From owner-freebsd-security  Thu Aug 13 15:24:10 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id PAA29881
          for freebsd-security-outgoing; Thu, 13 Aug 1998 15:24:10 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from Tyr.office.EFN.org ([204.214.99.45])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA29810
          for <freebsd-security@FreeBSD.ORG>; Thu, 13 Aug 1998 15:23:35 -0700 (PDT)
          (envelope-from spy@tyr.office.efn.org)
Received: from Tyr.office.EFN.org (IDENT:spy@Tyr.office.EFN.org [204.214.99.45])
	by Tyr.office.EFN.org (8.9.1/8.9.1) with SMTP id PAA29382;
	Thu, 13 Aug 1998 15:22:40 -0700 (PDT)
Date: Thu, 13 Aug 1998 15:22:39 -0700 (PDT)
From: Ben <spy@tyr.office.efn.org>
Reply-To: ben@efn.org
To: Nicole Harrington <nicole@mediacity.com>
cc: andrewr <andrewr@slack.net>, ben@efn.org, freebsd-security@FreeBSD.ORG
Subject: Re: Possible security "risk" in ftp client 
In-Reply-To: <Chameleon.903030774.nicole@mobil1.mediacity.com>
Message-ID: <Pine.BSF.3.96.980813152153.24003B-100000@Tyr.office.EFN.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

15:29.root@ben.v0(0)[/usr/src/usr.bin/fstat]759# ls -l /dev/mem
1129 0 crw-r-----  1 root  kmem    2,   0 Mar 24 17:56:50 1998 /dev/mem
It's also amazing when people forget when they are logged in as root.

	-ben@efn.org

On Thu, 13 Aug 1998, Nicole Harrington wrote:

> 
> > Maybe I'm mistaken, but ps(1) get's the info from /dev/kmem and /dev/mem and
> > formats them according to /kernel, what would I need to patch?
> > 
> 
>  It's rather amazing the amount of info you can get by doing  strings /dev/mem
> 
>   Nicole
> 
> 
> > On Wed, 12 Aug 1998, andrewr wrote:
> > 
> > > 
> > > 
> > > On Wed, 12 Aug 1998, Ben wrote:
> > > 
> > > > For ps I made a patch that allows only root(or wheel, you pick) to use the
> > > > flag '-a', otherwise the user attempting to use '-a' only gets his/her proc's.
> > > 
> > > Did you patch the kernel as well?  Caue if you didn't, it's useless. 
> > 
> > 	-ben@efn.org
> > 
> > 
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe security" in the body of the message
> > 
> 
> ---------------End of Original Message-----------------
> 
>  
>                      |\ __ /|   (`\            
>                      | o_o  |__  ) )           
>                     //      \\                 
>       Nicole Harrington | SR Systems Administrator
>  -------------------(((---(((-----------------------
>  
>    nicole@mediacity.com - nicole@ispchannel.com   
>       www.mediacity.com - www.ispchannel.com
>     Phone: 650-237-1464 - Pager: 415-301-2482
>  
>         Powered By Coca-Cola and FreeBSD
>  
>     Why do doctors call what they do practice?
>      Microsoft: What bug would you like today?
>  ----------------------------------------------------
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message