|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Sending escape sequences to xterms via wall/talk
pluvius (pluvius
dragon.achilles.net)Fri, 22 Jul 1994 13:32:46 -0400 (EDT)
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: George Boyce: "Re: coredumps on setuid programs."
- Previous message: Perry E. Metzger: "Re: yes, there's another hole in BIND"
- In reply to: Christopher A. Stewart: "Re: Sending escape sequences to xterms via wall/talk"
- Next in thread: a.e.mossberg: "Re: Wall and talkd pass binary data"
> I just verified in on Solaris by doing the following.. The subject of
> the expreiment was the zcat incarnation of gzip from gnu.. I setuid
> zcat to myself and then did 'zcat -f' and hit it with the quit
> character from the keyboard. It produced a core if I was myself, but
> didn't if I was any other user (including root).
>
atleast in HP-UX, probably other systems too, a setuid program will
only dump core if uid == euid
ie:
main()
{
char *foo;
setuid(geteuid());
fgets(foo); /* <-- boom */
}
will dump core if setuid, but
main()
{
char *foo;
fgets(foo); /* <-- boom */
}
will not unless run by whoever the program is setuid to.
- Next message: George Boyce: "Re: coredumps on setuid programs."
- Previous message: Perry E. Metzger: "Re: yes, there's another hole in BIND"
- In reply to: Christopher A. Stewart: "Re: Sending escape sequences to xterms via wall/talk"
- Next in thread: a.e.mossberg: "Re: Wall and talkd pass binary data"