Home page logo

bugtraq logo Bugtraq mailing list archives

Re: majordomo local exploit
From: chris () WESTNET COM (Christopher X. Candreva)
Date: Wed, 29 Dec 1999 09:52:33 -0500

On Tue, 28 Dec 1999, Brock Tellier wrote:

but wrapper immediatly setuid()'s and setgid()'s to owner:daemon before
execing the wrapped program.

Bugs in resend aside, this appears to be an incorrect configuration of
wrapper.  majordomo should have it's own group as well as user, and it
should change to that group, not daemon. This is according to Doc/FAQ in the
Majordomo 1.94.4 distribution.

The whole point of the wrapper and unique uid/gid is to limit the effect of
such bugs.


Chris Candreva  -- chris () westnet com -- (914) 967-7816
WestNet Internet Services of Westchester

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]