Re: Exploit in Upgrade Chain?

To: debian-security@lists.debian.org
Subject: Re: Exploit in Upgrade Chain?
From: Lupe Christoph <lupe@lupe-christoph.de>
Date: Thu, 12 Feb 2009 21:37:56 +0100
Message-id: <[🔎] 20090212203756.GB10254@lupe-christoph.de>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 49948255.4080801@thewellpoway.org>
References: <1407c5e60902112126q197eb474w9abfd88781c81eca@mail.gmail.com> <[🔎] 200902120813.03081.bss@iguanasuicide.net> <[🔎] 49948255.4080801@thewellpoway.org>

On Thursday, 2009-02-12 at 12:11:01 -0800, The Well - Systems Administrator wrote:
> 600 on /etc is technically more secure than the default 755 with normal  
> POSIX systems, not less. If this is an exploit, it's one that locks  
> things down tighter than they should normally be. :) Giacomo is correct  
> that these incorrect perms can cause other issues, though not security  
> related ones that I can think of.

Mode 600 will deny /etc to everybody except root while it will change
nothing for root. If you have any services on your system that run under
non-root UIDs, and that have config under /etc, you hose them with any
mode that removes the eXecute bit for "others".

So it's not an exploit, it's a Denial of Service. Which I believe *is*
security related...

Lupe Christoph
-- 
| There is no substitute for bad design except worse design.                   |
| /me                                                                          |

Reply to:

Follow-Ups:
- Re: Exploit in Upgrade Chain?
  - From: Izak Burger <isburger@gmail.com>

References:
- Re: Exploit in Upgrade Chain?
  - From: "Boyd Stephen Smith Jr." <bss@iguanasuicide.net>
- Re: Exploit in Upgrade Chain?
  - From: The Well - Systems Administrator <sysadmin@thewellpoway.org>

Prev by Date: Re: Exploit in Upgrade Chain?
Next by Date: Paper on potential security issues with the linux kernel PRNG
Previous by thread: Re: Exploit in Upgrade Chain?
Next by thread: Re: Exploit in Upgrade Chain?
Index(es):
- Date
- Thread