Re: Using sgid binaries to defend against LD_PRELOAD/ptrace()
"brian m. carlson" <sandals@crustytoothpaste.ath.cx> writes:
> On Mon, Apr 28, 2008 at 12:51:48AM +0200, Thomas Viehmann wrote:
> 1) it came from Debian, in which case I suggest we handle that program
> like micq (which had a malicious upstream); or
> 2) I wrote it myself, in which case I obviously designed it to do
> exactly that.
3) Some program has a security bug enabling others to run code.
For example your browser might have a faulty plugin and the next time
you use ssh-agent your ssh key and passphrase is reported back to some
malicious site.
MfG
Goswin
Reply to: