Re: [masq] 1st virus in Linux :( (fwd)

Neil Moore (amethyst@valjean.sfhs.floyd.k12.ky.us)
Mon, 10 Feb 1997 09:27:56 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Seth M. Landsman: "Re: Bliss virius"
Previous message: Rafal Maszkowski: "Re: 2.1.2[56] ifconfig -> wierd results ?"

>
> On Fri, 7 Feb 1997, Neil Moore wrote:
>
> > > On Fri, 7 Feb 1997 tyson@rwii.com wrote:
> > > I don't agree. Doom has a known bug which allows any user on your system
> > > to get root if doom is installed setuid root. Every Linux distribution
> > > I've ever used installs Doom setuid root, and RedHat has only recently
> > > released a patch to correct this. (The patch doesn't fix doom, just
> > > removes the setuid bit.)
> >
> > Why not just delete it?
>
> Doom is actually one of two programs: xdoom or sdoom. I think there is
> also a framebuffer version of xdoom. (That's the case in quake) sdoom
> uses svgalib and requires that suid root is set. xdoom works w/o suid.
> svgalib sucks anyway...

I meant, "Why not delete the executable you would be removing
suid from?" I meant sdoom here, as (hopefully) no one installs
xdoom suid root anyway.

-- 
-Neil Moore          http://www.sfhs.floyd.k12.ky.us/~amethyst/
(finger amethyst@valjean.sfhs.floyd.k12.ky.us for my Geek Code)

Next message: Seth M. Landsman: "Re: Bliss virius"
Previous message: Rafal Maszkowski: "Re: 2.1.2[56] ifconfig -> wierd results ?"