[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: FIX: World-writeable files repair script

To: Eric Sandeen <sandeen@sgi.com>
Subject: Re: FIX: World-writeable files repair script
From: Keith Owens <kaos@melbourne.sgi.com>
Date: Fri, 03 Aug 2001 10:20:35 +1000
Cc: linux-xfs@oss.sgi.com
In-reply-to: Your message of "02 Aug 2001 13:50:32 EST." <996778232.17558.9.camel@stout.americas.sgi.com>
Sender: owner-linux-xfs@oss.sgi.com

On 02 Aug 2001 13:50:32 -0500, 
Eric Sandeen <sandeen@sgi.com> wrote:
>Here's a script that should fix all the mis-permed files that may be
>lurking out there...  Sending this out now to get feedback before I
>unleash it on the world at large.

Add /lib/modules/*/modules.dep.  If that file is world writable you
have a local root exploit.  Due to the kernel bug, this has occurred on
Slackware installs.  As part of that exploit, people reported that
/var/log/wtmp and /var/run/utmp are also created with the wrong mask.
Not exploitable AFAIK but you can hide tasks if utmp is world writable.

Follow-Ups:
- Re: FIX: World-writeable files repair script
  - From: Eric Sandeen <sandeen@sgi.com>

References:
- FIX: World-writeable files repair script
  - From: Eric Sandeen <sandeen@sgi.com>

Prev by Date: Re: Strage values from FIBMAP on holes or after end of file
Next by Date: pagebuf in kernel causes abnormal behavior
Previous by thread: Re: FIX: World-writeable files repair script
Next by thread: Re: FIX: World-writeable files repair script
Index(es):
- Date
- Thread