Date: Sun, 10 Aug 1997 10:19:52 +0000 (GMT) From: Alfred Perlstein <perlsta@sunyit.edu> To: hackers@FreeBSD.org Subject: Fix for the PROCFS security hole! Message-ID: <Pine.BSF.3.96.970810101530.7449B-100000@server.local.sunyit.edu>
next in thread | raw e-mail | index | archive | help
I'm not to sure how to do it, but IF the procfs system could be modified to somehow act like the /dev/tty* system, where the second a user logs on the device is then owned by them and all other users access is revoked. This could work that a setuid proc when exec'd, procfs would automatically change permissions on it so that it is untainable. would this work? would it break a lot of stuff? i don't see why you would need to modify effectivly other peoples' programs except to cause some sort of security breach. ._________________________________________ __ _ |Alfred Perlstein - Programming & SysAdmin |perlsta@sunyit.edu |http://www.cs.sunyit.edu/~perlsta : ---"Have you seen my FreeBSD tatoo?" '
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.970810101530.7449B-100000>