Full Disclosure mailing list archives

Re: /bin/rm file access vulnerability

From: bkfsec <bkfsec () sdf lonestar org>
Date: Fri, 31 Dec 2004 10:28:17 -0500

J.A. Terranson wrote:


When you feed trolls, they grow :-)

Hey - I'm preplanning for Thanksgiving!

Seriously, we seem to be getting more crap like this.  Are people just
bored?


I'm bored :-)


        mx1# touch killme
        mx1# chmod 0 killme
        mx1# ls -al killme
        ----------  1 root  wheel  0 Dec 30 20:39 killme
        mx1# rm killme
        mx1# ls -al killme
        ls: killme: No such file or directory
        mx1#

At least here s/he/it could have tried to wrap the old "should anyone be
allowed to do this" trap around someone's ankles.  But the one below is
just beyond lame - it's a troll with a neon sign attached flashing "FEED
ME!"

Agreed - or, at least, wrapped some humor in there other than a simpleperl script. Heh.

Something like a headline "UnCHEckED DefaceMENT in UID0 in *ALL* UnIxKernELS!" would have sufficed.


               -Barry


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: /bin/rm file access vulnerability bkfsec (Dec 31)
- Re: /bin/rm file access vulnerability J.A. Terranson (Jan 06)
  - Re: /bin/rm file access vulnerability bkfsec (Jan 06)
- <Possible follow-ups>
- Re: /bin/rm file access vulnerability Sean Harlow (Dec 31)
  - Re: /bin/rm file access vulnerability vh (Jan 06)
    - Re: /bin/rm file access vulnerability Jeffrey Denton (Dec 31)
    - Re: /bin/rm file access vulnerability Frank Knobbe (Jan 02)
- Re: /bin/rm file access vulnerability Jerry (Jan 03)
  - Re: /bin/rm file access vulnerability James Longstreet (Jan 01)
  - Re: /bin/rm file access vulnerability Valdis . Kletnieks (Jan 04)
- Re: /bin/rm file access vulnerability Alex V. Lukyanenko (Jan 03)