[kismac] Re: IMPORTANT SECURITY ADVISORY
- From: Brad Knowles <brad.knowles@xxxxxxxxx>
- To: kismac@xxxxxxxxxxxxx
- Date: Sat, 23 Aug 2003 15:38:03 +0200
At 10:30 PM +0200 2003/08/22, Michael Rossberg wrote:
> bad news. enabling SUID feature in kismac 0.05d to 0.05d3 will open a
> local root hole on your system. this basically means that everyone with
> enough knowledge can upgrade his account to a root account on your
> system.
> there are two things you can do about this.
> 1. disable the SUID feature (default)
> 2. install kismac 0.05d4
What about those of us who have installed 0.05d3 but have not
enabled the suid feature?
Is there anything else that has changed with 0.05d4?
--
Brad Knowles, <brad.knowles@xxxxxxxxx>
"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
-Benjamin Franklin, Historical Review of Pennsylvania.
GCS/IT d+(-) s:+(++)>: a C++(+++)$ UMBSHI++++$ P+>++ L+ !E-(---) W+++(--) N+
!w--- O- M++ V PS++(+++) PE- Y+(++) PGP>+++ t+(+++) 5++(+++) X++(+++) R+(+++)
tv+(+++) b+(++++) DI+(++++) D+(++) G+(++++) e++>++++ h--- r---(+++)* z(+++)
- Follow-Ups:
- [kismac] Re: IMPORTANT SECURITY ADVISORY
- From: Michael Rossberg
- References:
- [kismac] IMPORTANT SECURITY ADVISORY
- From: Michael Rossberg
Other related posts:
- » [kismac] IMPORTANT SECURITY ADVISORY
- » [kismac] Re: IMPORTANT SECURITY ADVISORY
- » [kismac] Re: IMPORTANT SECURITY ADVISORY
- [kismac] Re: IMPORTANT SECURITY ADVISORY
- From: Michael Rossberg
- [kismac] IMPORTANT SECURITY ADVISORY
- From: Michael Rossberg