Bugtraq mailing list archives
Re: Sendmail 8.10.2, Linux 2.4.0 - capabilities
From: ksparger () DIALTONEINTERNET NET (Kyle Sparger)
Date: Thu, 8 Jun 2000 14:41:54 -0400
My first shot at Linux kernel hacking - were there any other tweaks to close this hole? ;)
I don't know what all the consequences of this are, but the module below will disable the capset system call (which I think is necessary for the exploit). This is also my first shot at kernel hacking -- if I did something stupid, please educate rather than flame :) Note that I don't know what all uses the capabilities code, but I've been running this module on my system here for a few hours without consequence. Thanks, Kyle Sparger - Senior System Administrator Dialtone Internet - Extremely Fast Web Systems (954) 581-0097 - Voice (954) 581-7629 - Fax ksparger () dialtoneinternet net http://www.dialtoneinternet.net --------------------------------------- bogus_capset.c, compile: gcc -DMODULE -c bogus_capset.c --------------------------------------- #include <linux/kernel.h> #include <linux/module.h> #include <sys/syscall.h> #include <linux/linkage.h> #include <linux/errno.h> #include <sys/syscall.h> extern void *sys_call_table[]; asmlinkage int bogus_capset() { return -EPERM; } int init_module() { sys_call_table[__NR_capset] = bogus_capset; return 0; } void cleanup_module() { }
Current thread:
- Sendmail 8.10.2, Linux 2.4.0 - capabilities Valdis Kletnieks (Jun 08)
- Re: Sendmail 8.10.2, Linux 2.4.0 - capabilities Kyle Sparger (Jun 08)
- Re: Sendmail 8.10.2, Linux 2.4.0 - capabilities xdr (Jun 09)
- format bugs, in addition to the wuftpd bug Lamagra Argamal (Jun 24)
- Re: format bugs, in addition to the wuftpd bug H D Moore (Jun 26)
- iMesh 1.02 vulnerability Blue Panda (Jun 29)
- Re: format bugs, in addition to the wuftpd bug Jason Axley (Jun 29)
- Concerning the LDAP Enabled Netscape FTP Server Alfred Huger (Jun 27)
- Glftpd privpath bugs... +fix Raymond Dijkxhoorn (Jun 26)
- Re: Glftpd privpath bugs... +fix Scott (Jun 27)
- Re: Sendmail 8.10.2, Linux 2.4.0 - capabilities Kyle Sparger (Jun 08)
- CONECTIVA LINUX SECURITY ANNOUNCEMENT - kernel Sergio Bruder (Jun 08)
- Sendmail & procmail local root exploits on Linux kernel up to 2.2.16pre5 Wojciech Purczynski (Jun 08)