Date: Thu, 22 Feb 2001 22:33:09 -0500 From: Mike Tancsa <mike@sentex.net> To: Kris Kennaway <kris@obsecurity.org> Cc: freebsd-security@FreeBSD.ORG Subject: Re: Bind problems Message-ID: <4.2.2.20010222223209.03bb2600@marble.sentex.net> In-Reply-To: <20010222192805.A12575@mollari.cthul.hu> References: <200102222330.f1MNU7e64567@cwsys.cwsent.com> <20010222134703.A7745@mollari.cthul.hu> <200102222330.f1MNU7e64567@cwsys.cwsent.com>
next in thread | previous in thread | raw e-mail | index | archive | help
At 07:28 PM 2/22/2001 -0800, Kris Kennaway wrote:
> >
> > The worst that could happen is that the intruder could fill your disk.
>
>No, they still get the ability to run arbitrary code because they
>compromise a running process and take over its execution context. The
But only as the non root UID though right ?
---Mike
--------------------------------------------------------------------
Mike Tancsa, tel +1 519 651 3400
Network Administration, mike@sentex.net
Sentex Communications www.sentex.net
Cambridge, Ontario Canada www.sentex.net/mike
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.2.2.20010222223209.03bb2600>