Modprobe local root exploit

From: Gregory Maxwell (greg@linuxpower.cx)
Date: Mon Nov 13 2000 - 09:37:27 EST

Next message: David Woodhouse: "Re: [PATCH] pcmcia event thread. (fwd)"
Previous message: Rasmus Andersen: "Oops on 2.2.17 [klogd bonus question]"
Next in thread: Torsten Duwe: "Modprobe local root exploit"
Reply: Torsten Duwe: "Modprobe local root exploit"
Maybe reply: Horst von Brand: "Re: Modprobe local root exploit"
Maybe reply: Florian Weimer: "Re: Modprobe local root exploit"
Maybe reply: Horst von Brand: "Re: Modprobe local root exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

After seeing the modprobe local root exploit today, I asked myself why
kmod executes modprobe with full root and doesn't drop some capabilities
first.

Why? It wouldn't close the hole, but it would narrow it down.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: David Woodhouse: "Re: [PATCH] pcmcia event thread. (fwd)"
Previous message: Rasmus Andersen: "Oops on 2.2.17 [klogd bonus question]"
Next in thread: Torsten Duwe: "Modprobe local root exploit"
Reply: Torsten Duwe: "Modprobe local root exploit"
Maybe reply: Horst von Brand: "Re: Modprobe local root exploit"
Maybe reply: Florian Weimer: "Re: Modprobe local root exploit"
Maybe reply: Horst von Brand: "Re: Modprobe local root exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Wed Nov 15 2000 - 21:00:23 EST