Date: Tue, 24 Oct 1995 05:00:22 +0300 (MSK) From: =?KOI8-R?Q?=E1=CE=C4=D2=C5=CA_=FE=C5=D2=CE=CF=D7?= (aka Andrey A. Chernov, Black Mage) <ache@astral.msk.su> To: davidg@Root.COM, Nate Williams <nate@rocky.sri.mt.net> Cc: ache@freefall.freebsd.org, freebsd-hackers@freebsd.org, John Polstra <jdp@polstra.com> Subject: Re: ld.so, LD_NOSTD_PATH, and suid/sgid programs Message-ID: <EasY4ZmaY2@ache.dialup.demos.ru> In-Reply-To: <FaLS4ZmKU1@ache.dialup.demos.ru>; from =?KOI8-R?Q?=E1=CE=C4=D2=C5=CA_=FE=C5=D2=CE=CF=D7?= at Tue, 24 Oct 1995 04:53:25 %2B0300 (MSK) References: <199510240141.SAA00275@corbin.Root.COM> <FaLS4ZmKU1@ache.dialup.demos.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <FaLS4ZmKU1@ache.dialup.demos.ru>
=?KOI8-R?Q?=E1=CE=C4=D2=C5=CA_=FE=C5=D2=CE=CF=D7?= writes:
>In message <199510240141.SAA00275@corbin.Root.COM> David Greenman
> writes:
>> Any shell script which is suseptible to a security hole because a command
>>failed to execute is broken. There are many reasons why things can fail
>>ranging from no diskspace available to who knows what. I think Andrey's hack
>>is an attempt to dam a river with a piece of tissue paper. The real problem
>If we try to plug all potential holes that we find, even small ones,
>probability of security violation becomes reduced. I don't plan to dam whole
>river, just plug in small leak reducing leaks number at whole.
BTW, why you stuck on "shell scripts" only? The same hole can hits
when commands entered by hand, see my example.
--
Andrey A. Chernov : And I rest so composedly, /Now, in my bed,
ache@astral.msk.su : That any beholder /Might fancy me dead -
http://dt.demos.su/~ache : Might start at beholding me, /Thinking me dead.
RELCOM Team,FreeBSD Team : E.A.Poe From "For Annie" 1849
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?EasY4ZmaY2>