[4808] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [ADVISORY] 4.4BSD Securelevels

daemon@ATHENA.MIT.EDU (Thomas H. Ptacek)
Fri Jun 27 13:02:44 1997

Date: 	Thu, 26 Jun 1997 12:09:50 -0500
Reply-To: tqbf@enteract.com
From: "Thomas H. Ptacek" <tqbf@ENTERACT.COM>
X-To:         howie@watsun.cc.columbia.edu
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To:  <CMM.0.90.4.867334753.howie@onyx.cc.columbia.edu> from "Howie
              Kaye" at Jun 26, 97 10:19:13 am

> If this secure_level is to prevent certain attacks as root, what stops
> root (or someone breaking in with root) from modifying the init
> binary, and rebooting to install it, or even having the modified code
> just get demand paged in?

The filesystem immutable flag.

----------------
Thomas Ptacek at EnterAct, L.L.C., Chicago, IL [tqbf@enteract.com]
----------------
"If you're so special, why aren't you dead?"


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[4808] in bugtraq

Re: [ADVISORY] 4.4BSD Securelevels

daemon@ATHENA.MIT.EDU (Thomas H. Ptacek)Fri Jun 27 13:02:44 1997

daemon@ATHENA.MIT.EDU (Thomas H. Ptacek)
Fri Jun 27 13:02:44 1997