Report a severe security vulnerability
Report a severe security vulnerability
Hi guys sorry form any inconvenience I would like to report what i am thinking a severe security vulnerability that affects all Debian based distros. it was on python 3 files i am sending a link to every malign list that i am subscribed. IAM NOT A PROFESSIONAL. FELL FREE TO REMOTE ACCESS MY MACHINES ANYTIME. if i am wrong my apology. but i think on my little knowledge certain has something in there. There is a lot of files on the link. I am trying to upload the raw files. but every distro brakes. it shows 140.7 tbTB!!! yes 104000 gbt that fits on a flash drive of 32gb is is very difficult to me to use interment. am being hunting down. so this is my last try. contact only by phone number. because the monitored and listen everything mine. is like a movie but is true.+552122366155 +552121796156 sorry but i don't know to tell this to anyone. because they don't believe.
link with the photos this is the link for linux distros https://photos.app.goo.gl/oHRP5Z8JEoT9Q4GN9
link for the other systems osx windows andorid...
https://photos.app.goo.gl/BsBCuYtVtE4VwGUC9
this is the link of the windows apple etc...
best regards leandro leme neto
De: "Markus Schönhaber" <debian-user@list-post.mks-mail.de>
Enviada: 2020/10/28 14:51:42
Para: debian-user@lists.debian.org
Assunto: Re: Qemu 9pfs sftp chrootdirectory option issue
28.10.20, 18:30 +0100 john doe:
> On 10/21/2020 11:02 PM, Markus Schönhaber wrote:
>> 21.10.20, 19:11 +0200, john doe:
>>
>>> On 10/20/2020 7:59 PM, Markus Schönhaber wrote:
>>
>>>> How about moving the 9pshare to a root-owned directory and pointing the
>>>> ChrootDirectory there, for example:
>>>> share -> /all/owned/by/root/9pshare
>>>> ChrootDirectory -> /all/owned/by/root
>>>>
>>>
>>> Thank you for this.
>>>
>>> I can only do that if 'passthrough' is used, as I don't realy understand
>>> the implecations of running qemu as root, I was hoping to find a way
>>> with 'mapped'.
>>> 'mapped' requires that the directory on the host is set to the group and
>>> user used by qemu, 'libvirt-qemu in this case.
>>
>> I don't see the problem with chown'ing the 9pshare directory to the qemu
>> user in my example above.
>>
>
> Okay, following your instructions I can now connect using sftp but I can
> not access the content of the share:
No, you seemingly didn't follow what I said.
> $ ls -dl /srv/sftp/9p
> drwx------ 8 root root ... /srv/sftp/9p
Isn't "9p" supposed to be the share directory? If it is, why is it owned
by root and has these restrictive permissions?
Assuming
ChrootDirectory -> /srv/sftp -> make this root:root, drwxr-xr-x
share -> /srv/sftp/9p -> make this libvirt-qemu:libvirt-qemu, drwxr-xr-x
> $ sftp sftp9p
> Connected to sftp9p.
> sftp> ls
> remote readdir("/"): Permission denied
Of course. Guessing from what you wrote above, only root can even list
the directory's contents (or change into it, in the first place).
--
Regards
mks
Reply to: