Re: ifupdown writes to /etc... a bug?

To: debian-devel@lists.debian.org
Subject: Re: ifupdown writes to /etc... a bug?
From: charlie derr <cderr@simons-rock.edu>
Date: Sat, 22 Mar 2003 09:15:13 -0500
Message-id: <[🔎] 3E7C6FF1.5010105@simons-rock.edu>
References: <[🔎] 20030310124920.GA32489@diamond.madduck.net> <[🔎] 20030311002145.4ccbf34d.bug1@optushome.com.au> <[🔎] 20030310134549.GB22708@valiant.sbg.palfrader.org> <[🔎] 20030311013742.4f1cf1e2.bug1@optushome.com.au> <[🔎] 20030310152231.GA8533@evbergen.xs4all.nl> <[🔎] 20030311122434.320f87f6.bug1@optushome.com.au> <[🔎] 8765qidfl8.fsf@mrvn.homelinux.org> <[🔎] 20030317115818.6bb5042d.bug1@optushome.com.au> <[🔎] 87llzeepe0.fsf@mrvn.homelinux.org> <[🔎] 20030321200228.GA8338@lapdog> <[🔎] 013f01c2f075$d6517e20$a2b89bd9@banana.org.uk>

It seems to me that if the root fs is on a ro medium (like a cd) thatthis is indeed a gain in security. This would make it impossible foryou to remount rw wouldn't it?


   ~c



Matt Ryan wrote:

Explain to me how the ro root makes a difference? There is a lot of talk
about how difficult it is to install a rootkit when the root fs is ro, but
if you already have superuser privileges why can't you just remount root rw
and then drop the rootkit in? If you don't have superuser privilege to do
this then you can write to root owned directories (with the correct
permissions) anyway?
I don't see the win here...


Matt.

Reply to:

Follow-Ups:
- Re: ifupdown writes to /etc... a bug?
  - From: "Matt Ryan" <mryan@debian.org>

References:
- ifupdown writes to /etc... a bug?
  - From: martin f krafft <madduck@debian.org>
- Re: ifupdown writes to /etc... a bug?
  - From: Glenn McGrath <bug1@optushome.com.au>
- Re: ifupdown writes to /etc... a bug?
  - From: Peter Palfrader <weasel@debian.org>
- Re: ifupdown writes to /etc... a bug?
  - From: Glenn McGrath <bug1@optushome.com.au>
- Re: ifupdown writes to /etc... a bug?
  - From: Emile van Bergen <emile-deb@evbergen.xs4all.nl>
- Re: ifupdown writes to /etc... a bug?
  - From: Glenn McGrath <bug1@optushome.com.au>
- Re: ifupdown writes to /etc... a bug?
  - From: Goswin Brederlow <goswin.brederlow@student.uni-tuebingen.de>
- Re: ifupdown writes to /etc... a bug?
  - From: Glenn McGrath <bug1@optushome.com.au>
- Re: ifupdown writes to /etc... a bug?
  - From: Goswin Brederlow <goswin.brederlow@student.uni-tuebingen.de>
- Re: ifupdown writes to /etc... a bug?
  - From: Tommi Virtanen <tv@debian.org>
- Re: ifupdown writes to /etc... a bug?
  - From: "Matt Ryan" <mryan@debian.org>

Prev by Date: Re: ifupdown writes to /etc... a bug?
Next by Date: Re: ifupdown writes to /etc... a bug?
Previous by thread: Re: ifupdown writes to /etc... a bug?
Next by thread: Re: ifupdown writes to /etc... a bug?
Index(es):
- Date
- Thread