|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Thwarting /bin/bash, an anti-overflow concept ?
From: Bruno Lustosa (bruno
lustosa.net)
Date: Wed Jan 07 2004 - 10:47:03 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
* Alex Schütz <antitrack_legendchello.at> [07-01-2004 14:14]:
> Anyhow, if we delete all shells... how safe are we, then ? (Ignoring the
> case that crontab might not work anymore...)
Apart from crontab, what if you ever need to do some remote or local
maintenance on the server? How are you going to do it?
And not only crontab, lots of programs on the system are in fact shell
or other scripts, and they would also break.
Even then, if I can run code of my choice, I could open a socket on any
port, and get whatever is sent on that port and pass it throught to
exec() and similar functions.
It will for sure cause more trouble than it would be worth.
--
Bruno Lustosa, aka Lofofora | Email: brunolustosa.net
Network Administrator/Web Programmer | ICQ UIN: 1406477
Rio de Janeiro - Brazil |
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQE//DgHiNfNvfQ8L5IRAkidAKC99EVttprriFQrURQLaeSY5sIB+gCgs2Bx
nrB//Elcs9fXlPU5QMuJrpw=
=QYow
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]