[613] in linux-security and linux-alert archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[linux-security] SlackWare 3.0 insecurity

daemon@ATHENA.MIT.EDU (Doctor Who)
Fri Feb 23 14:09:21 1996

Date: Fri, 23 Feb 1996 00:29:54 -0500 (EST)
From: Doctor Who <drwho@sinister.com>
To: linux-security@tarsier.cv.nrao.edu

This effects Slackware 3.0 and possibly other distributions, I haven't 
checked others yet.

If you mount the CDROM, it is mounted SUID-enabled. This is bad as many 
CDs include things such as the live filesystem on the Slackware CD. Thus, 
all a cracker has to do is run /cdrom/live/usr/bin/splitvt or exploit some 
other horrible old SUID-bug and root is obtained.

Fix this by changing the line in /etc/fstab which reads:
/dev/cdrom    /cdrom  iso9660    ro  1  1
to read:
/dev/cdrom    /cdrom  iso9660 nosuid  ro 1 1
to fix, and then
umount /cdrom ; mount /cdrom
to activate

-----------=?> Doctor Who <?=-----------
Sinister Networks             Repeal the
http://www.sinister.com         CDA now!


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[613] in linux-security and linux-alert archive

[linux-security] SlackWare 3.0 insecurity

daemon@ATHENA.MIT.EDU (Doctor Who)Fri Feb 23 14:09:21 1996

daemon@ATHENA.MIT.EDU (Doctor Who)
Fri Feb 23 14:09:21 1996