Re: ifupdown writes to /etc... a bug?

To: Glenn McGrath <bug1@optushome.com.au>
Cc: debian-devel@lists.debian.org
Subject: Re: ifupdown writes to /etc... a bug?
From: Goswin Brederlow <goswin.brederlow@student.uni-tuebingen.de>
Date: 22 Mar 2003 18:21:15 +0100
Message-id: <[🔎] 87r88znwqc.fsf@mrvn.homelinux.org>
In-reply-to: <[🔎] 20030323005235.1987b6c7.bug1@optushome.com.au>
References: <[🔎] 20030310124920.GA32489@diamond.madduck.net> <[🔎] 20030311002145.4ccbf34d.bug1@optushome.com.au> <[🔎] 20030310134549.GB22708@valiant.sbg.palfrader.org> <[🔎] 20030311013742.4f1cf1e2.bug1@optushome.com.au> <[🔎] 20030310152231.GA8533@evbergen.xs4all.nl> <[🔎] 20030311122434.320f87f6.bug1@optushome.com.au> <[🔎] 8765qidfl8.fsf@mrvn.homelinux.org> <[🔎] 20030317115818.6bb5042d.bug1@optushome.com.au> <[🔎] 87llzeepe0.fsf@mrvn.homelinux.org> <[🔎] 20030321200228.GA8338@lapdog> <[🔎] 013f01c2f075$d6517e20$a2b89bd9@banana.org.uk> <[🔎] 20030323005235.1987b6c7.bug1@optushome.com.au>

Glenn McGrath <bug1@optushome.com.au> writes:

> On Sat, 22 Mar 2003 13:20:39 -0000
> "Matt Ryan" <mryan@debian.org> wrote:
> 
> > Explain to me how the ro root makes a difference? There is a lot of
> > talk about how difficult it is to install a rootkit when the root fs
> > is ro, but if you already have superuser privileges why can't you just
> > remount root rw and then drop the rootkit in?

Dead simple. try to install a rootkit on a CD or a harddisk with the
RO jumper set.

You can't write to a read only medium and hacking a drives bios to
circumvent the RO jumper is hopefully impossible.

> > If you don't have superuser privilege to do
> > this then you can write to root owned directories (with the correct
> > permissions) anyway?

> You mean you can write to /tmp, how does that help ?

Esspecially with /tmp and /var being noexec and a fixed kernel /
ld-linux.so.

MfG
        Goswin

Reply to:

Follow-Ups:
- Re: ifupdown writes to /etc... a bug?
  - From: "Matt Ryan" <mryan@debian.org>

References:
- ifupdown writes to /etc... a bug?
  - From: martin f krafft <madduck@debian.org>
- Re: ifupdown writes to /etc... a bug?
  - From: Glenn McGrath <bug1@optushome.com.au>
- Re: ifupdown writes to /etc... a bug?
  - From: Peter Palfrader <weasel@debian.org>
- Re: ifupdown writes to /etc... a bug?
  - From: Glenn McGrath <bug1@optushome.com.au>
- Re: ifupdown writes to /etc... a bug?
  - From: Emile van Bergen <emile-deb@evbergen.xs4all.nl>
- Re: ifupdown writes to /etc... a bug?
  - From: Glenn McGrath <bug1@optushome.com.au>
- Re: ifupdown writes to /etc... a bug?
  - From: Goswin Brederlow <goswin.brederlow@student.uni-tuebingen.de>
- Re: ifupdown writes to /etc... a bug?
  - From: Glenn McGrath <bug1@optushome.com.au>
- Re: ifupdown writes to /etc... a bug?
  - From: Goswin Brederlow <goswin.brederlow@student.uni-tuebingen.de>
- Re: ifupdown writes to /etc... a bug?
  - From: Tommi Virtanen <tv@debian.org>
- Re: ifupdown writes to /etc... a bug?
  - From: "Matt Ryan" <mryan@debian.org>
- Re: ifupdown writes to /etc... a bug?
  - From: Glenn McGrath <bug1@optushome.com.au>

Prev by Date: Re: ifupdown writes to /etc... a bug?
Next by Date: Re: new experimental ppp package
Previous by thread: Re: ifupdown writes to /etc... a bug?
Next by thread: Re: ifupdown writes to /etc... a bug?
Index(es):
- Date
- Thread