Bugtraq mailing list archives
Re: libresolv+ bug
From: proff () suburbia net (Julian Assange)
Date: Wed, 21 Aug 1996 20:27:30 +1000
But, as we all know, that's not a particularly effective solution to the problem. The real problems, as I'm sure you'll agree, der Mouse, are that SUID programs aren't being written carefully enough, library routines that are potentially depended on by SUID programs aren't written with those security issues in mind, and, in general, most Unix OS's give "priveledged" programs that need to do one or two specific things far, far too much power.
From what I have seen, stack exploits are considerably harder on Alpha
architecture as the mmu does not grant the stack exec permissions, and the data space grows upwards, meaning that any over-written return address must contain a NULL if you the trojan code there. Calling code in the text segment, is still possible, if almost always futile. -- "Of all tyrannies a tyranny sincerely exercised for the good of its victims may be the most oppressive. It may be better to live under robber barons than under omnipotent moral busybodies, The robber baron's cruelty may sometimes sleep, his cupidity may at some point be satiated; but those who torment us for own good will torment us without end, for they do so with the approval of their own conscience." - C.S. Lewis, _God in the Dock_ +---------------------+--------------------+----------------------------------+ |Julian Assange RSO | PO Box 2031 BARKER | Secret Analytic Guy Union | |proff () suburbia net | VIC 3122 AUSTRALIA | finger for PGP key hash ID = | |proff () gnu ai mit edu | FAX +61-3-98199066 | 0619737CCC143F6DEA73E27378933690 | +---------------------+--------------------+----------------------------------+
Current thread:
- Re: libresolv+ bug Don Lewis (Aug 19)
- <Possible follow-ups>
- Re: libresolv+ bug der Mouse (Aug 19)
- Re: libresolv+ bug Alan Cox (Aug 20)
- Re: libresolv+ bug Thomas Ptacek (Aug 20)
- Re: libresolv+ bug Julian Assange (Aug 21)
- Re: libresolv+ bug John Nemeth (Aug 20)
- Re: libresolv+ bug Andi Gutmans (Aug 20)
- Re: libresolv+ bug Jon Lewis (Aug 20)
- Re: libresolv+ bug Elliot Lee (Aug 20)
- Re: libresolv+ bug Nick Andrew (Aug 20)
- Re: libresolv+ bug Jon Lewis (Aug 20)
- SigSev -> Security Hole Tim Smithers (Aug 20)
- Re: SigSev -> Security Hole Brian Mitchell (Aug 20)
- Re: libresolv+ bug Jon Lewis (Aug 20)
- Re: libresolv+ bug Don Lewis (Aug 20)
- Re: libresolv+ bug Zygo Blaxell (Aug 21)
(Thread continues...)