Re: System users and valid shells...

To: debian-devel@lists.debian.org
Subject: Re: System users and valid shells...
From: Thiemo Seufer <ths@networkno.de>
Date: Mon, 8 May 2006 12:47:53 +0100
Message-id: <[🔎] 20060508114753.GC31648@networkno.de>
In-reply-to: <[🔎] 20060508111757.GH14107@boogie.lpds.sztaki.hu>
References: <[🔎] 20060503004556.GA28648@aragorn> <[🔎] 20060503010259.GH12999@riva.ucam.org> <[🔎] Pine.LNX.4.64.0605021837210.2398@hygvzn-guhyr.pnirva.bet> <[🔎] ac9w7uvg.fsf@cante.net> <[🔎] E1FcznH-0001R3-48@scyw00225.scy001.de> <[🔎] 20060508090042.GA31648@networkno.de> <[🔎] 20060508102930.GC14107@boogie.lpds.sztaki.hu> <[🔎] 20060508105315.GB31648@networkno.de> <[🔎] 20060508111757.GH14107@boogie.lpds.sztaki.hu>

Gabor Gombas wrote:
> On Mon, May 08, 2006 at 11:53:15AM +0100, Thiemo Seufer wrote:
> 
> > Such a binary is completely broken, and it would fail in a similiar way
> > for any sort of file it has no execute permission for, not only for
> > $SHELL.
> 
> Sure, but that does not change the fact that it is a failure path that
> is usually not well-tested. Triggering it deliberately without a general
> audit of login shell handling therefore may discover new bugs with
> security implications.

So you expect systems to become exploitable by mounting /usr as noexec
when they provide some /usr/bin/foo shell?

Do you also expect this is more likely than an exploitable bug in
/usr/sbin/nologin or /bin/false with their dependencies on ldso and
glibc?

Thiemo

Reply to:

Follow-Ups:
- Re: System users and valid shells...
  - From: Gabor Gombas <gombasg@sztaki.hu>

References:
- System users and valid shells...
  - From: Uwe Hermann <uwe@hermann-uwe.de>
- Re: System users and valid shells...
  - From: Colin Watson <cjwatson@debian.org>
- Re: System users and valid shells...
  - From: Richard A Nelson <cowboy@debian.org>
- Re: System users and valid shells...
  - From: Jari Aalto <jari.aalto@cante.net>
- Re: System users and valid shells...
  - From: Marc Haber <mh+debian-devel@zugschlus.de>
- Re: System users and valid shells...
  - From: Thiemo Seufer <ths@networkno.de>
- Re: System users and valid shells...
  - From: Gabor Gombas <gombasg@sztaki.hu>
- Re: System users and valid shells...
  - From: Thiemo Seufer <ths@networkno.de>
- Re: System users and valid shells...
  - From: Gabor Gombas <gombasg@sztaki.hu>

Prev by Date: Re: System users and valid shells...
Next by Date: Re: Bug#366359: ITP: libnet-smtpauth-perl -- Simple Mail Transfer Protocol client with AUTHentication
Previous by thread: Re: System users and valid shells...
Next by thread: Re: System users and valid shells...
Index(es):
- Date
- Thread