Bugtraq mailing list archives

Re: [ADVISORY] 4.4BSD Securelevels

From: tqbf () ENTERACT COM (Thomas H. Ptacek)
Date: Thu, 26 Jun 1997 12:09:50 -0500

If this secure_level is to prevent certain attacks as root, what stops
root (or someone breaking in with root) from modifying the init
binary, and rebooting to install it, or even having the modified code
just get demand paged in?


The filesystem immutable flag.

----------------
Thomas Ptacek at EnterAct, L.L.C., Chicago, IL [tqbf () enteract com]
----------------
"If you're so special, why aren't you dead?"

Current thread:

Problem in dxterm (ULTRIX), (continued)
- - Problem in dxterm (ULTRIX) Trevor Schroeder (Jun 26)
  - Re: Solaris Ping bug (DoS) Philip Kizer (Jun 26)
    - Solaris Ping bug(inetsvc) Renteria Tabares J. (Jun 27)
    - Announce: ypcat for Win NT/95 Aaron Spangler (Jun 27)
  - Re: Solaris Ping bug (DoS) Geoff Mulligan (Jun 27)
    - Win95 ping bug nomad () APOLLO TOMCO NET (Jun 29)
    - Re: Solaris Ping bug (DoS) Jon Edwards (Jun 30)
  - Alert: Routing and RAS Filtering issue Aleph One (Jun 27)
  - Solaris Ping Bug and other [bc] oddities Aleph One (Jun 23)
- Re: [ADVISORY] 4.4BSD Securelevels Howie Kaye (Jun 26)
  - Re: [ADVISORY] 4.4BSD Securelevels Thomas H. Ptacek (Jun 26)
  - SUMMARY: Solaris Ping bug (DoS) Gnuchev Fedor (Jun 27)
  - Security hole affects many cvs pserver installations Aleph One (Jun 27)