Re: Debian 1.1 Problems

To: sjc@debian.org
Cc: debian-user@lists.debian.org
Subject: Re: Debian 1.1 Problems
From: Marcus Johnson <marcus@hbe.org>
Date: Wed, 17 Jun 1998 13:11:30 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.3.95.980617130422.16940P-100000@bay1.bjt.net>
Reply-to: Marcus Johnson <marcus@hbe.org>

Hi Steve,

Thanks for the info on root shell exploits!  If anyone has any more
reasons I can use to persuade my ISP to upgrade from Debian 1.1 I'd be
greatful.

Marcus

Stephen Carpenter wrote:

"Root Shell Exploits" are bugs in programs that either run as root (like a
network service deamon like telnetd) or are SUID root (which also means
they run AS root..but more like su or passwd). These are bugs which can be
"used" by an attacker to get a "root shell" (basically bash or some
equivalent shell with root privs) 

This of course gives them acess to teh entire system just liek a 'legal'
sys admin.

There are many types of such exploits (and even other types of exploits,
which may not give a root shell, but may delete an arbitrary file of the
attackers choosing etc)

Many such exploits can be found on www.rootshell.com if you are
interested.
(BTW if you are really interested in security I would recommend checking
out the BUGTRAQ mailing list)

-Steve

--=20
** Stephen Carpenter



--  
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Prev by Date: Re: netscape 4 configuration
Next by Date: Re: 8 GB limit on cfdisk?
Previous by thread: Re: Exim 1.90
Next by thread: compile errors
Index(es):
- Date
- Thread