[1768] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: Re: Re: Re: Bind Overrun Bug and Linux

daemon@ATHENA.MIT.EDU (Wietse Venema)
Fri May 22 16:45:13 1998

Date: Fri, 22 May 1998 13:41:20 -0400 (EDT)
From: wietse@porcupine.org (Wietse Venema)
In-reply-to: <3565781F.3F48650B@wisper.net>
To: linux-security@redhat.com
Cc: linux-security@redhat.com
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com

Leigh Porter:
> I keep a secret store of such handy things as ls, ps etc on all my systems and
> every
> night I have a process check the md5sum of every config/binary/lib on the box
> and report any problems to me.
> 
> No it's not fun :)

Beware, the kernel open() routine does not necessarily give you
the same file as the kernel exec() routine. Your checksum does
not necessarily apply to the file being executed.

	Wietse

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe: mail -s unsubscribe test-list-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post