Date: Tue, 25 Jun 1996 09:12:50 +0200 From: Mark Murray <mark@grumble.grondar.za.@grondar.za> To: -Vince- <vince@mercury.gaianet.net> Cc: Mark Murray <mark@grumble.grondar.za>, hackers@FreeBSD.org, security@FreeBSD.org, Chad Shackley <chad@mercury.gaianet.net>, jbhunt <jbhunt@mercury.gaianet.net> Subject: Re: I need help on this one - please help me track this guy down! Message-ID: <199606250712.JAA08662@grumble.grondar.za>
next in thread | raw e-mail | index | archive | help
-Vince- wrote: > > > Hmmm, doesn't everyone have . as their path since all . does is allow > > > someone to run stuff from the current directory... > > > > Not root! this leaves you wide open for trojans. As root you should > > have to type ./foo to run foo in the current directory. > > Hmmm, really? It seems like almost all systems root has . for the > path but if the directory for root is like read, write, execute by root > only, how will they get into it? Example: user suspects you may be a DOS user, and are likely to try to type the "dir" or "cls" command every now and then (by mistake). In his home directory he places a script called "dir" that creates a suid shell (silently) then prints the usual "command not found" error. He then phones you, asking for support, and tries to trick you into running his script. Having "." in your path makes his trickery easier. Voila! M -- Mark Murray 46 Harvey Rd, Claremont, Cape Town 7700, South Africa +27 21 61-3768 GMT+0200 Finger mark@grondar.za for PGP key
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199606250712.JAA08662>