Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1997_3

Bugtraq archives for 3rd quarter (Jul-Sep) 1997: Re: Backdoor Paper

Re: Backdoor Paper

Nicolas Dubee (dube0866EUROBRETAGNE.FR)
Sun, 27 Jul 1997 14:34:42 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Olaf Kirch: "Security Fix for Linux Universal NFS Daemon"
Previous message: osirispacificnet.net: "Re: IP spoofing/splicing references"
Maybe in reply to: Christopher Klaus: "Backdoor Paper"

hello,

you may want to add this "feature" that can act as a backdoor:

when specifying a wrong uid/gid in the /etc/password file,
most login(1) implementations will fail to detect the wrong
uid/gid and atoi(3) will set uid/gid to 0, giving superuser
privileges.

example:
rmartin:x:x50:50:R. Martin:/home/rmartin:/bin/tcsh
on Linux boxes, this will give uid 0 to user rmartin.



-plaguez
dube0866eurobretagne.fr

>
>Date:         Sat, 16 Aug 1997 19:07:58 -0400
>From: Christopher Klaus <cklausISS.NET>
>Subject:      Backdoor Paper
>
>Here's a paper I wrote on backdoors.  Feedback welcome.
>
>
>Backdoors
>
>By Christopher Klaus 8/4/97
>
>

Next message: Olaf Kirch: "Security Fix for Linux Universal NFS Daemon"
Previous message: osirispacificnet.net: "Re: IP spoofing/splicing references"
Maybe in reply to: Christopher Klaus: "Backdoor Paper"