A required change? Re: [linux-security] Re: kerneld and module security

To: "debian-devel@lists.debian.org" <debian-devel@lists.debian.org>, "debian-policy@lists.debian.org" <debian-policy@lists.debian.org>
Subject: A required change? Re: [linux-security] Re: kerneld and module security
From: "Dave Cinege" <dcinege@psychosis.com>
Date: Tue, 30 Sep 97 06:17:10 -0500
Message-id: <[🔎] m0xFzKN-0005c2C@Schizo.psychosis.com>
Reply-to: "Dave Cinege" <dcinege@psychosis.com>

On Mon, 29 Sep 1997 15:05:20 -0400 (EDT), Patrick Cantwell wrote:

Seems like a serious hole to me. I just changed the permissions on my box, and 
think it it warrants debian to change policy regarding permissions and modules.

>On Sun, 28 Sep 1997, Aleph One wrote:
>
>(forwarded from linux-security@redhat.com)
>
><snip>
>
>> Corollary:  Any module in /lib/modules can be loaded into kernel memory by
>> any user at any time.  There are potential denial-of-service attacks
>> from autoprobes and device initialization all kinds of other goo that
>> I wish I didn't have to think about here.
>
>see Brian Mitchell's "hacked_setuid" module, that was released in phrack
>50, article 5 (along with his linspy terminal snooper program)..
>what this module does is redirect the setuid() call so you can become
>superuser using a magic number.
>just think, if you could load this module at will without being root, all
>you'd need to do is whip up some code that does setuid(magic_number) and
>spawns a shell! 
>
>> Here are four alternative fixes:
>
>#5 make /usr/lib/modules root read/write only


-------------------------------------------------------------------------
http://www.psychosis.com/emc/		Elite MicroComputers   908-541-4214
http://www.psychosis.com/linux-router/	Linux Router Project

Reply to:

Prev by Date: Re: perl-base
Next by Date: Re: perl-base
Previous by thread: FHS clarification
Next by thread: /usr/share/ and /usr/local/share/
Index(es):
- Date
- Thread