Date: Tue, 23 Feb 1999 09:27:21 +1030 From: Greg Lehey <grog@lemis.com> To: Gustavo Vieira G C Rios <grios@netshell.vicosa.com.br>, "Dan O'Connor" <dan@jgl.reno.nv.us> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: assembly Message-ID: <19990223092721.L93492@lemis.com> In-Reply-To: <36D1BAB6.BB3F8701@netshell.vicosa.com.br>; from Gustavo Vieira G C Rios on Mon, Feb 22, 1999 at 05:14:46PM -0300 References: <003001be5e98$8af7fb20$0200000a@danco.home> <36D1BAB6.BB3F8701@netshell.vicosa.com.br>
next in thread | previous in thread | raw e-mail | index | archive | help
On Monday, 22 February 1999 at 17:14:46 -0300, Gustavo Vieira G C Rios wrote: > Dan O'Connor wrote: >> >> From: Gustavo Vieira G C Rios <grios@netshell.vicosa.com.br> >> >>> So no system is secure, if you have a shell account and an assembler to >>> use, right ? >> >> You'd still have to have the proper file permissions to modify the >> master.passwd file. Assembly language is just a low-level programming >> language, not a security bypass. > > I don't believe (i am sorry if i am wrong, but i am a beginner)! > If i use assembly i do not need to read a file via read API, i can > access the HD directly, without to check for access permissions, > right ? No. As I said in my last message, assembler doesn't bypass the API. The system runs in two modes, user and kernel. The only way to load kernel code without permission is to write your own kernel and boot the machine with it. > If so, i can hack a UNIX system (no matter which) using assembly! No. > Am i wrong ? Yes. Greg -- When replying to this message, please copy the original recipients. For more information, see http://www.lemis.com/questions.html See complete headers for address, home page and phone numbers finger grog@lemis.com for PGP public key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990223092721.L93492>