[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Using sgid binaries to defend against LD_PRELOAD/ptrace()

"brian m. carlson" <sandals@crustytoothpaste.ath.cx> writes:

> On Mon, Apr 28, 2008 at 12:51:48AM +0200, Thomas Viehmann wrote:
> 1) it came from Debian, in which case I suggest we handle that program
> like micq (which had a malicious upstream); or
> 2) I wrote it myself, in which case I obviously designed it to do
> exactly that.

3) Some program has a security bug enabling others to run code.

For example your browser might have a faulty plugin and the next time
you use ssh-agent your ssh key and passphrase is reported back to some
malicious site.


Reply to: