[246] in linux-security and linux-alert archive
Re: switching symlinks on atrun
daemon@ATHENA.MIT.EDU (Michael Shields)
Fri May 26 05:19:47 1995
From: shields@tembel.org (Michael Shields)
To: Thomas.Koenig@ciw.uni-karlsruhe.de (Thomas Koenig)
Date: Thu, 25 May 1995 03:16:08 +0000 (GMT)
Cc: linux-security@tarsier.cv.nrao.edu
In-Reply-To: <199505241216.OAA03469@mvmampc66.ciw.uni-karlsruhe.de> from "Thomas Koenig" at May 24, 95 02:16:52 pm
> /var/spool/atrun is owned by a non - root userid, usually bin.
>
> If somebody broke into bin, he could then execute a shell script
> owned by root with root permissions, via a
But lots of things are owned by bin. /bin/sh is probably owned by bin.
If you have bin, you can get root, at or no at.
--
Shields.
