Re: [TUHS] The evolution of Unix facilities and architecture

13 May 2017

On Fri, 12 May 2017, Random832 wrote:

...
  Ah. There's the other piece. You start the SUID
program under the 
 debugger, and rather than kicking off the debugger, it simply starts it 
 non-suid. *However*, in the presence of shared text (either of the two 
 cases being checked for in the other place), you can make changes to the 
 text image (e.g. put whatever code you want at the entry point), which 
 will be reused the *next* time it is started *without* the debugger. 
Cripes!  I think you're right...  If so, well done!

-- 
Dave Horsfall DTM (VK2KFU)  "Those who don't understand security will
suffer."

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

1998

1997

1996

1995

1994

1993

1992

1991

1990

Re: [TUHS] The evolution of Unix facilities and architecture