Re: [Tlug_en] Ptrace Vulnerability Allows Gaining of Elevated Privileges under Linux

To: Rex Tsai <chihchun@kalug.linux.org.tw>
Cc: "Y. Cheng" <ycheng@slat.org>, "Debian Chinese list." <debian-chinese-big5@lists.debian.org>, KaLUG <kalug@kalug.linux.org.tw>, TLUG-en <tlug_en@linux.org.tw>
Subject: Re: [Tlug_en] Ptrace Vulnerability Allows Gaining of Elevated Privileges under Linux
From: "Y. Cheng" <ycheng@slat.org>
Date: Mon, 7 Apr 2003 15:53:56 +0800
Message-id: <[🔎] 20030407075356.GA17522@beta.wsl.sinica.edu.tw>
In-reply-to: <[🔎] 3E911601.6080605@kalug.linux.org.tw>
References: <[🔎] 3E90D793.7060209@kalug.linux.org.tw> <[🔎] 20030407053631.GA16018@beta.wsl.sinica.edu.tw> <[🔎] 3E911601.6080605@kalug.linux.org.tw>

Andrew 幫忙作了 kernel 的 image, 放在

http://debian.linux.org.tw/~andrew/deb/

我剛剛測試了一下, 發現該 kernel *必須* 手動作

	/usr/sbin/mkinitrd -o initrd.2.4.20-1p4 /lib/modules/2.4.20-1p4

才能夠正常 Work.

所以完整的程序是這樣

1. 從上面 url 下載 kernel-image-2.4.20-1p4_10.00.Custom_i386.deb
2. dpkg -i kernel-image-2.4.20-1p4_10.00.Custom_i386.deb (use root)
3. /usr/sbin/mkinitrd -o initrd.2.4.20-1p4 /lib/modules/2.4.20-1p4 (use root)
3.5 如果你的開機碟在 scsi, 你必須在 /etc/modules 把 scsi 的 modules 放進去
	建議你把你的網路卡 module 也放到那個目錄裡面去.
4. 作 /initrd.img 的 symbolic link 如

	ln -s /boot/initrd.2.4.20-1p4 /initrd.img

5. 在 /etc/lilo.conf 在 label=Linux 那一段增加 initrd=/initrd.img
6. reboot.

我個人在兩台電腦上進行都正確無誤.

以上文字, no warranty. 無擔保.

ps. 這次的事件, 讓我對於如何維護一台安全的 Debian 有了更深的認識.
    過去單純的以為把 security url 放在 souce.list 就 ok, 現在看來
    似乎不完全是這樣. FYI.

On Mon, Apr 07, 2003 at 02:09:05PM +0800, Rex Tsai wrote:
> Y. Cheng wrote:
> > On Mon, Apr 07, 2003 at 09:42:43AM +0800, Rex Tsai wrote:
> > [deleted]
> > 
> >>各位可以透過這個 apt resource 來更新檔案，建議馬上更新你的系統
> >>deb ftp://ftp.us.debian.org/debian dists/woody-proposed-updates/
> > 
> > 
> > not work on my woody, 是放在 /etc/apt/souces.list 就可以嗎 ?
> > 
> > 放進去後 apt-get update 會有錯誤訊息.
> 
> Sorry, 應該是
> deb ftp://ftp.us.debian.org/debian woody-proposed-updates main contrib non-free
> 
> 或許還需要一些 apt_preferences(5) 的技巧來讓你的系統正確的升級上去

Reply to:

References:
- Ptrace Vulnerability Allows Gaining of Elevated Privileges under Linux
  - From: Rex Tsai <chihchun@kalug.linux.org.tw>
- Re: [Tlug_en] Ptrace Vulnerability Allows Gaining of Elevated Privileges under Linux
  - From: "Y. Cheng" <ycheng@slat.org>
- Re: [Tlug_en] Ptrace Vulnerability Allows Gaining of Elevated Privileges under Linux
  - From: Rex Tsai <chihchun@kalug.linux.org.tw>

Prev by Date: 把我打ś}然後紮°_來！！！
Next by Date: how to fix isec-ptrace-kmod-exploit.c?
Previous by thread: Re: [Tlug_en] Ptrace Vulnerability Allows Gaining of Elevated Privileges under Linux
Next by thread: 把我打ś}然後紮°_來！！！
Index(es):
- Date
- Thread