Re: allowing a "normal" user to work efficiently

To: Debian Users <debian-user@lists.debian.org>
Subject: Re: allowing a "normal" user to work efficiently
From: Deryk Barker <dbarker@turing.cs.camosun.bc.ca>
Date: Thu, 6 Nov 2003 10:41:23 -0800
Message-id: <[🔎] 20031106184123.GA22897@turing.cs.camosun.bc.ca>
In-reply-to: <[🔎] pan.2003.11.06.07.03.47.376869@ucdavis.edu>
References: <3481.213.193.180.46.1066731756.squirrel@camelot.ddts.net> <3F953931.2090006@yahoo.es> <1794.213.193.180.46.1066746797.squirrel@camelot.ddts.net> <3F95521C.303@yahoo.es> <20031021160302.GC17255@server.crasseux.com> <[🔎] pan.2003.11.06.07.03.47.376869@ucdavis.edu>

Thus spake Ken Bloom (kabloom@ucdavis.edu):

> On Tue, 21 Oct 2003 18:20:22 +0200, Bijan Soleymani wrote:
> 
> > On Tue, Oct 21, 2003 at 11:34:52AM -0400, Roberto Sanchez wrote:
> > For example imagine you make "cat" suid...
> > 
> > Then someone can do:
> > cat /bin/rm /bin/cat
> 
> Interesting attack in theory, but it doesn't work.
> the correct command is cat /bin/rm > /bin/cat
> and when you run that command, the pipe is handled by the unprivileged
> shell.
> 
> > cat -rf /

Ah, but there's another thing: overwriting a setuid file turns the
setuid bit off. (I think this was originally put into *nix for C2
certification) So it still wouldn't work.

-- 
|Deryk Barker, Computer Science Dept. | Music does not have to be understood|
|Camosun College, Victoria, BC, Canada| It has to be listened to.           |
|email: dbarker@camosun.bc.ca         |                                     |
|phone: +1 250 370 4452               |         Hermann Scherchen.          |

Reply to:

References:
- Re: allowing a "normal" user to work efficiently
  - From: Ken Bloom <kabloom@ucdavis.edu>

Prev by Date: Re: WooHoo! Courier-Imap is imapping away!
Next by Date: Patch for Links to support about:blank
Previous by thread: Re: allowing a "normal" user to work efficiently
Next by thread: razor discovery server down -- is there another one?
Index(es):
- Date
- Thread