Re: /dev/shm/r?

To: debian-security@lists.debian.org
Subject: Re: /dev/shm/r?
From: Marcin Owsiany <porridge@debian.org>
Date: Mon, 1 Jun 2009 12:31:04 +0100
Message-id: <[🔎] 20090601113104.GA23190@beczulka>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 200906011226.49721.vladislav.kurz@webstep.net>
References: <[🔎] 20090601084652.GA22462@sun.ac.za> <[🔎] 200906011226.49721.vladislav.kurz@webstep.net>

On Mon, Jun 01, 2009 at 12:26:49PM +0200, Vladislav Kurz wrote:
> On Monday 01 of June 2009, Johann Spies wrote:
> > spawn /bin/bash
> > interact

Note that this seems to be a simple "expect(1)" script which runs a
shell. Not necessarily an indication of anything apart from a possible
attacker trying to exploit something using expect.

-- 
Marcin Owsiany <porridge@debian.org>             http://marcin.owsiany.pl/
GnuPG: 1024D/60F41216  FE67 DA2D 0ACA FC5E 3F75  D6F6 3A0D 8AA0 60F4 1216

Reply to:

Follow-Ups:
- Re: /dev/shm/r?
  - From: Michael Stone <mstone@debian.org>

References:
- /dev/shm/r?
  - From: Johann Spies <jspies@sun.ac.za>
- Re: /dev/shm/r?
  - From: Vladislav Kurz <vladislav.kurz@webstep.net>

Prev by Date: Re: /dev/shm/r?
Next by Date: Re: Debian suggestion on File Deletion
Previous by thread: Re: /dev/shm/r?
Next by thread: Re: /dev/shm/r?
Index(es):
- Date
- Thread