[46] in bugtraq
Re: chmod 000 .rhosts - works?
daemon@ATHENA.MIT.EDU (Pat Myrto)
Wed Oct 19 13:40:14 1994
From: rwing!pat@ole.cdac.com (Pat Myrto)
To: bugtraq@crimelab.com
Date: Wed, 19 Oct 94 7:21:37 PDT
In-Reply-To: <Pine.3.89.9410190222.E737-0100000@bcslnx.bcs.org>; from "John Abreau" at Oct 19, 94 2:06 am
"In the previous message, John Abreau said..."
>
> I'd think the most straightforward fix would be to replace the uses of
> system(...) in the source. In the example above, replace
> system("mkdir foo");
> with
> mkdir("foo", 0700);
>
> (This assumes, of course, that you have sources...)
Unfortunately, most don't, so if a patch isn't available, one must
do creative things with privs and perms (or disable expreserve) to
fix it.
Its amazing that bug still remains, as widely known as it is and as old
as it is. Practically every OS vendor has some kind of patch for it,
yet continue to not fix it in subsequent releases. Makes one wonder.
Perhaps a few people sent 'to the bullet-riddled wall' for using system()
at full SUID privs in a SUID program would reduce such usage in the
future... :-)
--
pat@rwing [If all fails, try: rwing!pat@eskimo.com] Pat Myrto - Seattle WA
"No one has the right to destroy another person's belief by demanding
empirical evidence." -- Ann Landers, nationally syndicated advice columnist
and Director at Handgun Control Inc.
