Re: System users and valid shells...

To: Thiemo Seufer <ths@networkno.de>
Cc: debian-devel@lists.debian.org
Subject: Re: System users and valid shells...
From: Gabor Gombas <gombasg@sztaki.hu>
Date: Mon, 8 May 2006 19:48:06 +0200
Message-id: <[🔎] 20060508174806.GO22958@boogie.lpds.sztaki.hu>
In-reply-to: <[🔎] 20060508114753.GC31648@networkno.de>
References: <[🔎] 20060503004556.GA28648@aragorn> <[🔎] 20060503010259.GH12999@riva.ucam.org> <[🔎] Pine.LNX.4.64.0605021837210.2398@hygvzn-guhyr.pnirva.bet> <[🔎] ac9w7uvg.fsf@cante.net> <[🔎] E1FcznH-0001R3-48@scyw00225.scy001.de> <[🔎] 20060508090042.GA31648@networkno.de> <[🔎] 20060508102930.GC14107@boogie.lpds.sztaki.hu> <[🔎] 20060508105315.GB31648@networkno.de> <[🔎] 20060508111757.GH14107@boogie.lpds.sztaki.hu> <[🔎] 20060508114753.GC31648@networkno.de>

On Mon, May 08, 2006 at 12:47:53PM +0100, Thiemo Seufer wrote:

> So you expect systems to become exploitable by mounting /usr as noexec
> when they provide some /usr/bin/foo shell?

Not actually "expect", but I would not be _that_ suprised. Most programs
that care about the login shell tend to run as root so a simple bug is
much more likely to become a security problem.

> Do you also expect this is more likely than an exploitable bug in
> /usr/sbin/nologin or /bin/false with their dependencies on ldso and
> glibc?

The code of nologin or false should be trivial. Spotting a place in some
complicated daemon where it fails to handle the "execve() returs an
error" case properly is much harder.

Gabor

-- 
     ---------------------------------------------------------
     MTA SZTAKI Computer and Automation Research Institute
                Hungarian Academy of Sciences
     ---------------------------------------------------------

Reply to:

References:
- System users and valid shells...
  - From: Uwe Hermann <uwe@hermann-uwe.de>
- Re: System users and valid shells...
  - From: Colin Watson <cjwatson@debian.org>
- Re: System users and valid shells...
  - From: Richard A Nelson <cowboy@debian.org>
- Re: System users and valid shells...
  - From: Jari Aalto <jari.aalto@cante.net>
- Re: System users and valid shells...
  - From: Marc Haber <mh+debian-devel@zugschlus.de>
- Re: System users and valid shells...
  - From: Thiemo Seufer <ths@networkno.de>
- Re: System users and valid shells...
  - From: Gabor Gombas <gombasg@sztaki.hu>
- Re: System users and valid shells...
  - From: Thiemo Seufer <ths@networkno.de>
- Re: System users and valid shells...
  - From: Gabor Gombas <gombasg@sztaki.hu>
- Re: System users and valid shells...
  - From: Thiemo Seufer <ths@networkno.de>

Prev by Date: Re: Re: screenshot with package description
Next by Date: Re: screenshot with package description
Previous by thread: Re: System users and valid shells...
Next by thread: Re: System users and valid shells...
Index(es):
- Date
- Thread