LINUX.IE, website of the Irish Linux Users' Group
Tux rules!

   
Home
New Users
Articles
Download
Projects
Community
Vendors

  Print Version
Email to...
 
Archives:


planetILUG

Recent News

News Archive


Join the
ILUG
on FaceBook


Join the
ILUG
on LinkedIn


Join the
ILUG SETI
Group



















 
 :: Mailing Lists

[ILUG] unix mail script virus hole long before windows?

[ILUG] unix mail script virus hole long before windows?

Foley, Brian (Galway) Brian.P.Foley at compaq.com
Tue Jul 10 14:58:17 IST 2001 

Well yeah, any arbitrary piece of data can be turned into executable code in
PS, but thats not quite the point.
You don't have to do any interpretation yourself -- thats what the PS
interpreter is for!

If you redefined the file operator (which takes works like fopen in C) as
the following:
/file {
	pop pop
	invalidfileaccess
} def

Then any attempt to open a file such as
(/etc/passwd) (w) file
would cause an error. 

If this redefinition is done as part of the job prolog, then the 'real'
definition of the file operator is effectively lost for the rest of the job.

BTW the following should do what you want, but don't hold me to it, I've no
PS interpreter to hand right now...

%!PS
/f
	(~/i_could_have_deleted_all_your_files) (w) file
def

f (You've been PostScripted!) writestring
f closefile

Cheers,
Brian.

-----Original Message-----
From: Paul Jakma [mailto:paulj at alphyra.ie]
Sent: 10 July 2001 13:46
To: Foley, Brian (Galway)
Cc: ilug at linux.ie
Subject: RE: [ILUG] unix mail script virus hole long before windows?

[snip]

however, less reassuring, from the same post, is that in PS operators
can be created from other strings. so it would seem to be nearly
impossible to secure PS just by scanning the inputted PS, the
interpreter would have to check constantly while 'running' the PS
script.

wonder whether ghostscript has been refined further security wise
since the above 1994 RISKS digest? ...

what's the postscript for:

echo "you've been postscripted" >> ~/i_could_have_deleted_all_your_files

??

'd love to send to a few people....

--paulj

More information about the ILUG mailing list
Read this without the formatting.
                                                                                                    

  

Hosted by HEAnet


 Maintained by the ILUG website team. The aim of Linux.ie is to support and help commercial and private users of Linux in Ireland. You can display ILUG news in your own webpages, read backend information to find out how. Networking services kindly provided by HEAnet, server kindly donated by Dell. Linux is a trademark of Linus Torvalds, used with permission. No penguins were harmed in the production or maintenance of this highly praised website. Looking for the Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
RSS Version
Powered by Dell