[nflug] Another reason to not use M$ products...
Eric Benoit
ebenoit at hopevale.com
Thu Nov 3 14:31:21 EST 2005
What if I did not allow any user to have a shell login (or false
login)...would this help prevent the first which you described?
Mark Musone wrote:
>No, this is not true at all..
>
>Any remote exploit could allow a non-root user to access a Linux box. From
>there, a local exploit can be done, raising a users level to root..This is
>actually a standard mechanism.
>
>Although someone can gain direct root access by either a remote exploit in
>which the daemon runs as root, or a local exploit being done _as_ root, it
>is most commonly accomplished using the two-step process as described above.
>
>
>-Mark
>
>
>
>-----Original Message-----
>From: nflug-bounces at nflug.org [mailto:nflug-bounces at nflug.org] On Behalf Of
>Eric Benoit
>Sent: Thursday, November 03, 2005 12:37 PM
>To: nflug at nflug.org
>Subject: Re: [nflug] Another reason to not use M$ products...
>
>So, you can only get root kits if you are logged in as root or someone
>gains access to root, speaking of Linux not MS?
>_______________________________________________
>nflug mailing list
>nflug at nflug.org
>http://www.nflug.org/mailman/listinfo/nflug
>
>_______________________________________________
>nflug mailing list
>nflug at nflug.org
>http://www.nflug.org/mailman/listinfo/nflug
>
>
_______________________________________________
nflug mailing list
nflug at nflug.org
http://www.nflug.org/mailman/listinfo/nflug
More information about the nflug
mailing list