Honeypots mailing list archives
Re: Stop me before I suid again...
From: "Kurt Seifried" <bt () seifried org>
Date: Mon, 29 Sep 2003 16:26:31 -0600
On most UNIX systems programs can be setuid and scripts cannot, i.e. anything that is a text file and starts with "#!/path/to/interpreter". This is a safety feature as most scripts are inherently insecure and can easily be passed options that would allow an attacker to compromise the system. You'll want a setuid wrapper, which comes with Perl most often, but more importantly you'll want to do some reading, google covers this, and the various Perl faqs/documentation. Kurt Seifried, kurt () seifried org A15B BEE5 B391 B9AD B0EF AEB0 AD63 0B4E AD56 E574 http://seifried.org/security/
Current thread:
- Stop me before I suid again... vze24z4z (Sep 29)
- Re: Stop me before I suid again... Kurt Seifried (Sep 30)