| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <E1IW8R4-0000ko-2z@be1.lrz> Date: Fri, 14 Sep 2007 12:30:05 +0200 From: Bodo Eggert <7eggert@....de> To: Brent Casavant <bcasavan@....com>, Gabor Gombas <gombasg@...aki.hu>, linux-kernel@...r.kernel.org Subject: Re: O_NOLINK for open() Brent Casavant <bcasavan@....com> wrote: [...] > Hmm. This will work as long as the peer process is running setuid > to it's own unique user. Excellent idea! Since I need to make the > program setuid to avoid non-priveleged ptrace attacks, this is a > terrific solution. Tried that: ~ > cd tmp ~/tmp > cp /bin/sleep . ~/tmp > chmod u+s sleep ~/tmp > ./sleep 2147483647 & [1] 2823 ~/tmp > strace -p 2823 Process 2823 attached - interrupt to quit setup( -- Top 100 things you don't want the sysadmin to say: 27. You can do this patch with the system up... Friß, Spammer: 7TdJfPsslN@...aOy.7eggert.dyndns.org - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists