Path: utzoo!news-server.csri.toronto.edu!rutgers!dimacs.rutgers.edu!bcm!convex!usenet
From: tchrist@convex.COM (Tom Christiansen)
Newsgroups: comp.unix.admin
Subject: Re: Kmem security (was: Re: How do you make your UNIX crash ???)
Message-ID: <1991Mar13.180300.17697@convex.com>
Date: 13 Mar 91 18:03:00 GMT
References: <513@bria> <1991Mar12.132003.27383@cs.widener.edu> <14454@ulysses.att.com>
Sender: usenet@convex.com (news access account)
Reply-To: tchrist@convex.COM (Tom Christiansen)
Organization: CONVEX Software Development, Richardson, TX
Lines: 12
Nntp-Posting-Host: pixel.convex.com

From the keyboard of cjc@ulysses.att.com (Chris Calabrese):
:Allowing any access to /dev/kmem is asking for trouble.
:It's possible to become root on a system which
:has a readable /dev/kmem without too much trouble.

With just read access?  How do you do that?  I can understand
being able to read other people's data, but I really don't know 
how you would use this to become the superuser.  Reading su passwds?
This is much harder in raw mode.


--tom