[3700] in bugtraq
Re: Security Problems in XMCD 2.1
daemon@ATHENA.MIT.EDU (Alan Cox)
Wed Nov 27 18:39:02 1996
Date: Wed, 27 Nov 1996 20:10:35 +0000
Reply-To: Alan Cox <alan@lxorguk.ukuu.org.uk>
From: Alan Cox <alan@lxorguk.ukuu.org.uk>
X-To: jimd@starshine.org
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <199611270409.UAA22950@antares.starshine.org> from "Jim Dennis"
at Nov 26, 96 08:09:04 pm
> However, what attracted me to this package
> was the optional MD5 check on your binary after
> the ACL is verified and before the su/execution.
Better I think to alter your OS binary loader so that it looks for an
extra ELF 'MD5 signed' tag and checks it against a kernel specific key
you load. Any binary not matching it thats run uid < somevalue just
doesnt run setuid. I'd be tempted to extend that to doesnt run so you
had only a small subset of root runnable as root binaries.
Alan
