On May 18, Paul directed electrons to linux-discussion@xxxxxxxxxxxxx: >A more useful malicious script: >#!/bin/sh >cp /bin/sh /home/malicioususer/.shells/`whoami`.sh >chmod a+s /home/malicioususer/.shells/`whoami`.sh >Now they have a setuid root shell. Didn't work. The most I could do with that was create a file that was user blj8 and group root, but that did not enable me to change any root-owned files, and when in that shell, the whoami command still said "blj8". -=Brian L. Johnson, www.blj8.com=- Total Bookmarks in file= 8615 --------------------------------- For PGP key email to: pgpkey@xxxxxxxx For Geekcode email to: geekcode@xxxxxxxx ============================================================= Avenir Web's Linux Discussion List List info: //www.freelists.org/cgi-bin/webpage?webpage_id=13 To unsubscribe: email linux-discussion-request@xxxxxxxxxxxxx with 'unsubscribe' in the Subject line. Administrative contact: weez@xxxxxxxxxxxxx =============================================================