Full Disclosure mailing list archives
Re: NETRAGARD-20060624 SECURITY ADVISORY] [ROXIO TOAST 7 TITANIUM - LOCAL ROOT COMPROMISE ]
From: <daylasoul () hush com>
Date: Wed, 23 Aug 2006 11:15:39 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 23 Aug 2006 08:13:07 -0500 K F <kevin () trifinite org> wrote:
Propaganda Support wrote:Then you aren't an admin user. You're using someone else's adminaccount. This is not simply arguing over semantics. Theseconcepts arewell defined on Unix-based systems.I must have missed that man page. I can't find the one that says if you don't have the password for user X then you are not user X.If your argument is based primarily on allowing others to haveaccessto an admin account which is not theirs (i.e., for which they donothave the password), then you really don't have much of anargument. Ingeneral, this is a VERY BAD IDEA, and is completely unnecessaryon amulti-user system like OS X.I assume you never considered that folks do gain access to peoples accounts from time to time... so just for the sake of argument.... say I take advantage of the latest lets say Bluetooth bug in OSX that allows me to obtain the privileges of the logged in user. I have caught you with your Bluetooth chip enabled and have managed to get a remote shell on your computer while you are logged in as an admin level user. I am now an admin level user regardless of having your password or not... (sure I can rm your home dir but I can't add a user or do anything else root level) By your understanding of an admin user it seems as if you have absolutely NO problem with me as an attacker simply making my self root at this point. You seem to hold no differentiation between someone that has gid=admin and root regardless of if they have a password or not. I am guessing that you also do not see an issue in the behavior of not re locking control panel (like OSX does by default) item as well? -KFKind Regards, -jeff --Jeff Holland http://propagandaprod.com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Please take off topic discussions off list per the list charter. Thank you kf. -----BEGIN PGP SIGNATURE----- Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 2.5 wpwEAQECAAYFAkTsgFUACgkQ3AEcWsxdEQ7JowP/VFm1qPN+F5Fvy4gsDjlwOz0247Gn NPLM5OFR1WfhoopfXgzAYlZ1awup2FNL7aR2EbZIzFtrkqVqKz4XcGOagThNGAbX37SN fqyfi4cQC6ZpgPyRxhcons7/5yaixaFgKt6yC+mwlNr3P21krjKZoBedbyDsm+7cSXyo t6stEFY= =MIdf -----END PGP SIGNATURE----- Concerned about your privacy? Instantly send FREE secure email, no account required http://www.hushmail.com/send?l=480 Get the best prices on SSL certificates from Hushmail https://www.hushssl.com?l=485 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: NETRAGARD-20060624 SECURITY ADVISORY] [ROXIO TOAST 7 TITANIUM - LOCAL ROOT COMPROMISE ] daylasoul (Aug 23)