On Wednesday 19 December 2001 13:13, Padraig Brady wrote:
> No you can't do this (pass parameters using symbolic links).
Ah, but you can.
Admittedly under special circumstances, but.
It used be a classic security hole: make a shell script, then suid root it.
Someone else could then come along and do this:
ln -s suid-script ./-i
PATH=.:$PATH -i
which would present them with an interactive shell as root. Yes, you can
prevent this from happening etc. etc. but the point I'm illustrating is
that if the executable is a #! file of any sort, the kernel will do this:
$HASH_BANG_PROGRAM $0
which I'm sure can be used to, uh, prove a point if nothing else.
Cheers,
Waider.
--
waider at dspsrv.com / Chances are I'm not at home right now.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
