Date: Fri, 21 Aug 1998 01:46:58 -0600 From: Brett Glass <brett@lariat.org> To: "Jordan K. Hubbard" <jkh@time.cdrom.com>, security@FreeBSD.ORG Subject: Re: Scaring the bezeesus out of your system admin as a normal user: Message-ID: <199808210746.BAA09394@lariat.lariat.org> In-Reply-To: <29367.903682974@time.cdrom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Not to mention what you can do if you feed it an absurdly long string in some UNIX implementations. (Oops, just mentioned it.) --Brett At 12:02 AM 8/21/98 -0700, Jordan K. Hubbard wrote: >% logger -p auth.notice -t su crackman to root on ttyp1 > >I'd suggest that /var/run/log should have 0600 permissions but that >would certainly screw over a few of syslog(3)'s current users. > >Hmmmm. No quick ideas here. :) > >- Jordan > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199808210746.BAA09394>