SECURITY BUG IN INTERACTIVE UNIX SYSV386
Sean Eric Fagan
sef at kithrup.COM
Fri Feb 15 07:16:02 AEST 1991
In article <1991Feb13.221259.1462 at scuzzy.in-berlin.de> src at scuzzy.in-berlin.de (Heiko Blume) writes:
>not exactly, for public access to my source archive i've set up
>a chroot() user that can't write anywhere, unhackable :-)
Sorry, that's not the case. Once you've got root access, you can go through
and do lots of nasty things, including setting u.u_rdir to something useful,
like '/'. Figuring out how to do so is left as an excercise for the reader.
--
Sean Eric Fagan | "I made the universe, but please don't blame me for it;
sef at kithrup.COM | I had a bellyache at the time."
-----------------+ -- The Turtle (Stephen King, _It_)
Any opinions expressed are my own, and generally unpopular with others.
More information about the Comp.unix.sysv386
mailing list