NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Vuln-Dev> 2002-q2

From: Olaf Kirch (okircaldera.de)
Date: Tue Apr 23 2002 - 02:27:53 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Apr 22, 2002 at 09:43:32AM +0300, Sabau Daniel wrote:
> boxes and i've been succesfull, please if anyone know how to eliminate
> this hole in my security give me a replay. If i try to change the mode on

You can't fix it. You can always do

        cp file-with-mode-444-perms ./foobar
        chmod +x foobar
        ./foobar

Unix file permission bits aren't really orthogonal, especially r and x.
Even though it may give some admins a deep feeling of satisfaction,
playing with the r and x bits accomplishes nothing in terms of security.

Olaf

-- 
Olaf Kirch        |  Anyone who has had to work with X.509 has probably
okircaldera.de   |  experienced what can best be described as
------------------+  ISO water torture. -- Peter Gutmann

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]