Glibc Local Root Exploit (fwd)
Gert Doering
gert at greenie.muc.de
Fri Jan 12 06:31:55 EST 2001
Hi,
On Thu, Jan 11, 2001 at 11:41:36AM -0600, mouring at etoh.eviladmin.org wrote:
> 2) Where is the correct 'sweet' spot to drop priviledge to stop this type
> of attack (Assuming there is such a spot for every OS).
Bind to the privileged socket very early, drop suid, then start doing
anything else (parsing files, reading things).
But if the bugs in glibc are bad enough, even that won't help...
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert.doering at physik.tu-muenchen.de
More information about the openssh-unix-dev
mailing list