Re^2: mount ..umount

Christos Ricudis Christos_Ricudis at p98.f11.n413.z2.fidonet.org
Wed May 14 03:26:31 EEST 1997 

Hello Linux-greek-users!

In <LINUX-USERS.GR> Linux-greek-users wrote:

 L> Dhaldh pou akriobos? Mporeis na doseis paradeigma?
 L> Telika oloi lete na bgalo to SUID root. Giati to slackware to
 L> exei apo th mana touy?

Giati h mount(2) apaitei root priviledges gia na kanei th doyleia ths.

 L> PS: to dokimasas xoris SUID kai 3ero oti trexei , apla den
 L> katalabaino giati.

Giati den trexei, aplws.

Oriste kai h apodeiksh : 

paiko:[ricudis]~$ cat /etc/fstab
...
/dev/sda2       /disk2          ext2            rw,user 2 1
...
To option user ypoti8etai oti 8a me afhne na kanw mount to partition san aplos
user, opws eipan kai alloi edw pera. 

paiko:[ricudis]~$ mount -n /disk2
mount: must be superuser to use mount
paiko:[ricudis]~$
paiko:[root]~/uwin# chmod u+s /bin/mount
paiko:[ricudis]~$ mount /disk2
paiko:[ricudis]~$ mount
/dev/sdb1 on / type ext2 (rw)
/dev/sda1 on /disk1 type ext2 (rw)
/dev/hda1 on /msdos type msdos (rw)
/proc on /proc type proc (rw)
/dev/sda2 on /disk2 type ext2 (rw,noexec,nosuid,nodev)

Ypopshn oti to option user synepagetai kai ta options noexec, nosuid, nodev,
gia logoys asfaleias - wste na mhn mporei kapoios user na kanei mount mia
disketa me root owned setuid executables h device files me allagmena
permissions.  

 L> PS1: mipos mporo na bgalo to SUID root kai apo to ping kai
 L> traceroute?

Apo kei eidika mhn ta bgaleis. To ICMP einai prospelasimo mono apo root owned
processes. Bebaia mporeis kallista na peis "de 8elw na ta trexei ayta kaneis
allos ektos toy rooty root". 

Egw proswpika akoloy8w th logikh oti opoios kataferei na ftasei se shell,
aytomatws exei kai root priviledges, pragma poy den einai ka8oloy yperboliko an
skeftei kaneis ti trypes yparxoyn ekei pera. Gi ayto den prosexw kai toso to
security se ayto to epipedo, alla prosexw poly ta remotely exploitable
bugs.

Christos Ricudis, 2:410/3.0.
--
====================================================================
Gia na mathete pos na xrisimopoiite ton majordomo, stilte e-mail
sto "majordomo at argeas.argos.hol.gr" me 1 grammi sto keimeno: help
Ta archives tis listas einai sto http://www.argos.hol.gr/lists
Gia opoiodipote problima stilte  e-mail ston owner-linux-greek-users
====================================================================

More information about the Linux-greek-users mailing list