Vulnerability Development mailing list archives

Re: Ports 0-1023?

From: Blue Boar <BlueBoar () thievco com>
Date: Mon, 08 Jul 2002 10:38:16 -0700

Robert Bihlmeyer wrote:

What's the point in stripping root from sshd if it is able to run a
shell as any user (including root)?

With the proposed change, sshd could only get root if someone with theactual root password comes along and hands it to the sshd. With theexisting scheme, any remote vulnerabilities in the sshd code that happenbefore it can drop privs will yield root without the password for the rootaccount.


Which is exactly what I was after.

                                                BB

Current thread:

Re: Ports 0-1023?, (continued)
- - - Re: Ports 0-1023? gminick (Jul 05)
    - Re: Ports 0-1023? George W. Capehart (Jul 05)
- Ports 0-1023? alex (Jul 04)
  - Re: Ports 0-1023? Michal Zalewski (Jul 04)
- Re: Ports 0-1023? Blue Boar (Jul 04)
  - Re: Ports 0-1023? Brian Hatch (Jul 04)
    - Re: Ports 0-1023? Blue Boar (Jul 04)
    - Re: Ports 0-1023? Brian Hatch (Jul 05)
    - Re: Ports 0-1023? Clint Byrum (Jul 05)
  - Re: Ports 0-1023? Robert Bihlmeyer (Jul 08)
    - Re: Ports 0-1023? Blue Boar (Jul 08)
    - Re: Ports 0-1023? Robert Bihlmeyer (Jul 08)
- RE: Ports 0-1023? Michael Wojcik (Jul 07)
- RE: Ports 0-1023? Dawes, Rogan (ZA - Johannesburg) (Jul 08)
- RE: Ports 0-1023? Dawes, Rogan (ZA - Johannesburg) (Jul 08)