[14361] in bugtraq
Re: TESO & C-Skills development advisory -- imwheel
daemon@ATHENA.MIT.EDU (WHiTe VaMPiRe)
Mon Mar 20 11:04:37 2000
Mail-Followup-To: Bugtraq <bugtraq@securityfocus.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="CE+1k2dSO48ffgeK"
Message-Id: <20000319113156.A143@nirvana.projectgamma.com>
Date: Sun, 19 Mar 2000 11:31:56 -0500
Reply-To: whitevampire@mindless.com
From: WHiTe VaMPiRe <whitevampire@MINDLESS.COM>
X-To: Bugtraq <bugtraq@securityfocus.com>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.3.96.1000316143702.257C-200000@ati12.cs.uni-potsdam.de>; from krahmer@CS.UNI-POTSDAM.DE on Thu,
Mar 16, 2000 at 02:38:47PM +0100
--CE+1k2dSO48ffgeK
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
On Thu, Mar 16, 2000 at 02:38:47PM +0100, Sebastian(krahmer@CS.UNI-POTSDAM.=
DE) wrote:
: TESO Security Advisory
: 2000/03/13
:=20
: imwheel local root compromise
The Slackware package available from Linuxmafia.org
(http://linuxmafia.org/pcentral/search_view.php3?name=3Dimwheel) is not
effected by this, as it does not package with the SUID wrapper. (The
binary included is also not set SUID.) This is with version 0.9.6 of
imwheel.
A SUID wrapper should simply not be necessary in the first
place.
As far as I can tell the standard package of imwheel 0.9.7 does
not have a wrapper. However, during 'installation,' it will prompt you
asking whether or not to install SUID.
An excerpt from the Makefile:
## Setting UID, this is best for non-root usage!
## This does not effect usage for root users. (duh!)
## This gives all users kill privileges for other imwheel processes.
Judging from that, if you setup imwheel to be started via the
users' xinit scripts, and killed upon logout, it would have the same
function.
To reiterate, SUID is just a quick cop-out for a better=20
setup. If it is a one-user desktop machine, even less than that would
have to be done.
Regards,
--=20
__ ______ ____
/ \ / \ \ / / WHiTe VaMPiRe\Rem
\ \/\/ /\ Y / whitevampire@mindless.com
\ / \ / http://www.projectgamma.com/
\__/\ / \___/ http://www.gammaforce.org/
\/ "Silly hacker, root is for administrators."
--CE+1k2dSO48ffgeK
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.1
iQA/AwUBONUA+d/q8ZpxA8pfEQKd7ACdGB9ea1WY/W5Bx1pj+d5eQvDqj14AoNIt
frBbf4Nek/O95EuNqrEShzqD
=TuZS
-----END PGP SIGNATURE-----
--CE+1k2dSO48ffgeK--
