On Fri, Jul 21, 2000 at 10:36:54AM -0700, Andre Hedrick wrote:
> Now to restate that it is possible to push the shellstack with the
> mini-code that is called disk-destroyer.c with out being root and wax your
> system. I hate having to expose everything, but now the hackers of the
> world know now to take down Linux Boxes one by one.
Interesting. If this is true (non-root 'pushes the shellstack' (what's
meant by that?) and executes code as root), then it's a serious security
issue.
However, it's completely separate from the disk-destroyer case,
because if he can do that, then with the couple bytes of code he can
gain normal root access and that's much more dangerous than just frying
the system.
-- Vojtech Pavlik SuSE Labs- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Sun Jul 23 2000 - 21:00:17 EST