Re: [Secure-testing-team] Re: kernel allows loadkeys to be used byany user, allowing for local root compromise

From: Anthony DeRobertis
Date: Tue Oct 18 2005 - 23:15:27 EST

Next message: Lee Revell: "Re: scsi_eh / 1394 bug - -rt7"
Previous message: Andrew Morton: "Re: [PATCH]: Handling spurious page fault for hugetlb region for2.6.14-rc4-git5"
In reply to: Krzysztof Halasa: "Re: kernel allows loadkeys to be used by any user, allowing forlocal root compromise"
Next in thread: Krzysztof Halasa: "Re: [Secure-testing-team] Re: kernel allows loadkeys to be used byany user, allowing for local root compromise"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Krzysztof Halasa wrote:

> Why doesn't the intruder just simulate login process (printing "login: "
> and "Password:")? That's known and used for ages.

Well, you can configure a single vty to only allow logins from admins.
Then you avoid the fake login problem, but not the loadkeys problem
(since that affects all vtys)
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Lee Revell: "Re: scsi_eh / 1394 bug - -rt7"
Previous message: Andrew Morton: "Re: [PATCH]: Handling spurious page fault for hugetlb region for2.6.14-rc4-git5"
In reply to: Krzysztof Halasa: "Re: kernel allows loadkeys to be used by any user, allowing forlocal root compromise"
Next in thread: Krzysztof Halasa: "Re: [Secure-testing-team] Re: kernel allows loadkeys to be used byany user, allowing for local root compromise"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]