Re: Shadow Passwords

To: jhenders@wimsey.com
Cc: debian-user@Pixar.com
Subject: Re: Shadow Passwords
From: "Mark W. Eichin" <eichin@cygnus.com>
Date: Sun, 4 Feb 1996 16:54:45 -0500
Message-id: <[🔎] 199602042154.QAA01647@perdiem.cygnus.com>
In-reply-to: <[🔎] 4f31jb$ish@vanbc.wimsey.com> (jhenders@wimsey.com)

> linux's isgraph, it would be a fair trick to create executable code
> from just the set of printable ascii characters. That would mean that

Umm, as a counterexample, there's a "Hello Polyglots" program which is
a text file that compiles in over a dozen languages (C, C++, Cobol,
fortran, others) and interprets in several (pilot, postscript!) *and*
if you rename it to POLY.COM it runs on a DOS machine. It turns out
that you can do a lot with the x86 using only printable ascii
characters... 

> If people issued a security alert for every piece of code running on
> linuux that didn't do bounds checking on input the security list would

If they did, then people might start to GET A CLUE about how
vulnerable linux applications tend to be... remember, if you see a
CERT advisory about something, it's usually *because* someone is
exploiting it (otherwise they tend to keep it quiet) and we'd rather
catch these before then...
					_Mark_ <eichin@cygnus.com>
					Cygnus Support, Eastern USA

ps. See also the Morris Worm, which finally got people to *notice*
this problem, which overflowed a buffer with code through fingerd, and
couldn't use NUL -- but only needed 25 bytes or so of code to perform 
an exec("/bin/sh")... http://www.mit.edu:8001/people/eichin/virus/main.html
for details.)

Reply to:

Follow-Ups:
- Re: Shadow Passwords
  - From: Nick Busigin <nick@xwing.xwing.org>

References:
- Re: Shadow Passwords
  - From: jhenders@wimsey.com (John Henders)

Prev by Date: ftp server?
Next by Date: Re: SCSI CD-ROM Mounting
Previous by thread: Re: Shadow Passwords
Next by thread: Re: Shadow Passwords
Index(es):
- Date
- Thread