tech-security: Re: bin/4489: /usr/games/fish allows setuid games binaries to be created by unprivileged user

Subject: Re: bin/4489: /usr/games/fish allows setuid games binaries to be created by unprivileged user
To: Mike Long <mikel@shore.net>
From: Rick Byers <rickb@iaw.on.ca>
List: tech-security
Date: 11/18/1997 18:35:11

On Tue, 18 Nov 1997, Mike Long wrote:
> >This isn't just an esoteric problem. I wonder how many people have
> >'fortune' in their /etc/profile? Wouldn't take you long to get a root shell.
> 
> This is a bit of a red herring; fortune(6) isn't controlled by dm.

But fortune is owned by the user games, so once access to the games
account is obtained, fortune can be replaced with a trojan.  Many people
(like me) have fortune in their .profile.

Rick

=========================================================================
Rick Byers                                      Internet Access Worldwide
rickb@iaw.on.ca                                		     System Admin
University of Waterloo, Computer Science                    (905)714-1400
http://www.iaw.on.ca/rickb/                         http://www.iaw.on.ca/