The Daily Static
  The Daily Static
UF Archives
Register
UF Membership
Ad Free Site
Postcards
Community
Geekfinder
UFie Gear
Advertise on UF
Forum Rules
& FAQ

Username

Password


Create a New Account

  
 

Back to UserFriendly Strip Comments Index
php query (ies?) by waveydavey2007-07-10 02:32:16
  Won't work with (Bash) shellscript by ttlogic2007-07-10 02:44:18
    That's the kernel, not bash; it applies to any int by bwkaz 2007-07-10 04:06:57
erpreted file.

The reason is that the kernel doesn't pass the script along to the interpreter as a file descriptor, only as a file name. So between the time the interpreter starts up (running as root, mind you) and the time it opens the script file, some attacker could replace the file with their own file (that's not setuid-root, but will still get executed by root).

So the kernel disables setuid on any interpreted file. It's not that bash drops privileges; it's that it never gets them in the first place. You can't reconfigure bash to avoid this, either. :-)
[ Reply ]
      Makes sense by ttlogic2007-07-10 04:15:08

 

[Todays Cartoon Discussion] [News Index]

Come get yer ARS (Account Registration System) Source Code here!
All images, characters, content and text are copyrighted and trademarks of J.D. Frazer except where other ownership applies. Don't do bad things, we have lawyers.
UserFriendly.Org and its operators are not liable for comments or content posted by its visitors, and will cheerfully assist the lawful authorities in hunting down script-kiddies, spammers and other net scum. And if you're really bad, we'll call your mom. (We're not kidding, we've done it before.)