Re: Root is God? (was: Mutt & tmp files)

To: debian-security@lists.debian.org
Subject: Re: Root is God? (was: Mutt & tmp files)
From: Mathias Gygax <mg@trash.net>
Date: Fri, 16 Nov 2001 18:02:49 +0100
Message-id: <[🔎] 20011116180249.A11480@stinky.trash.net>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 3BF54371.B75617AC@dreibrodt.de>; from ralf@dreibrodt.de on Fre, Nov 16, 2001 at 05:48:49PM +0100
References: <[🔎] 20011115191101.B21932@axon-e.de> <[🔎] 20011115102833.A22221@crdic.ath.cx> <[🔎] 20011115234631.A7910@pandora.plagegeister.de> <[🔎] 20011116041316.J634@plato.local.lan> <[🔎] 20011116143630.A24998@stinky.trash.net> <[🔎] 3BF51B98.4E99D3B7@dreibrodt.de> <[🔎] 20011116150654.A26516@stinky.trash.net> <[🔎] 20011116082327.I18021@riseup.net> <[🔎] 20011116173943.B8261@stinky.trash.net> <[🔎] 3BF54371.B75617AC@dreibrodt.de>

On Fre, Nov 16, 2001 at 05:48:11PM +0100, Ralf Dreibrodt wrote:

> you have just another definition of root.

no. we don't have any user concept there.

> you mean the user with the id 0. this user is really not able to do
> this.  but root after my definition can hit the reset-button, put in a
> cdrom and boot from the cdrom.

root does also have access to a remote link. so does the attacker. the
linux system doesn't have any mean of whom exactly is changing the
cdrom. there's an abstraction layer to identify you with, typically, a
password in the system. this stuff is stored on easy-to-modificate
media. you must have a proection in the kernel in a secure environment
and even then it's not secure.

> as long as you booted the "normal" way.

of course. but, how dou you wanna change it?

> btw: is there anything similar to the international kernel patch for
> linux 2.4.x?

dunno.

openwall and stealth patch also don't work on 2.4.x...

Reply to:

References:
- Mutt & tmp files
  - From: Florian Bantner <f.bantner@axon-e.de>
- Re: Mutt & tmp files
  - From: Craig Dickson <crdic@yahoo.com>
- Root is God? (was: Mutt & tmp files)
  - From: "Mark Weinem" <mark.weinem@uni-duisburg.de>
- Re: Root is God? (was: Mutt & tmp files)
  - From: Ethan Benson <erbenson@alaska.net>
- Re: Root is God? (was: Mutt & tmp files)
  - From: Mathias Gygax <mg@trash.net>
- Re: Root is God? (was: Mutt & tmp files)
  - From: Ralf Dreibrodt <ralf@dreibrodt.de>
- Re: Root is God? (was: Mutt & tmp files)
  - From: Mathias Gygax <mg@trash.net>
- Re: Root is God? (was: Mutt & tmp files)
  - From: Micah Anderson <micah@riseup.net>
- Re: Root is God? (was: Mutt & tmp files)
  - From: Mathias Gygax <mg@trash.net>
- Re: Root is God? (was: Mutt & tmp files)
  - From: Ralf Dreibrodt <ralf@dreibrodt.de>

Prev by Date: Re: Root is God? (was: Mutt & tmp files)
Next by Date: Re: Root is God? (was: Mutt & tmp files)
Previous by thread: Re: Root is God? (was: Mutt & tmp files)
Next by thread: Re: Root is God? (was: Mutt & tmp files)
Index(es):
- Date
- Thread