[TUHS] The evolution of Unix facilities and architecture

Dave Horsfall dave at horsfall.org
Sat May 13 10:55:34 AEST 2017


On Fri, 12 May 2017, Random832 wrote:

> Ah. There's the other piece. You start the SUID program under the 
> debugger, and rather than kicking off the debugger, it simply starts it 
> non-suid. *However*, in the presence of shared text (either of the two 
> cases being checked for in the other place), you can make changes to the 
> text image (e.g. put whatever code you want at the entry point), which 
> will be reused the *next* time it is started *without* the debugger.

Cripes!  I think you're right...  If so, well done!

-- 
Dave Horsfall DTM (VK2KFU)  "Those who don't understand security will suffer."


More information about the TUHS mailing list