Xref: utzoo comp.unix.programmer:1303 alt.sources.d:1605 Path: utzoo!news-server.csri.toronto.edu!cs.utexas.edu!uunet!convex!usenet From: tchrist@convex.COM (Tom Christiansen) Newsgroups: comp.unix.programmer,alt.sources.d Subject: Re: -x implementations Message-ID: <1991Mar13.042033.12450@convex.com> Date: 13 Mar 91 04:20:33 GMT References: <1991Mar08.194702.5369@kithrup.COM> <19101@rpp386.cactus.org> Sender: usenet@convex.com (news access account) Reply-To: tchrist@convex.COM (Tom Christiansen) Organization: CONVEX Software Development, Richardson, TX Lines: 26 Nntp-Posting-Host: pixel.convex.com From the keyboard of jfh@rpp386.cactus.org (John F Haugh II): :In article peter@ficc.ferranti.com (Peter da Silva) writes: :>Does "auth" have write access to these files? If so then you haven't changed :>the problem any. Just made it more obscure. Nothing that someone with adb :>and a little determination couldn't crack. : :You have a pretty poor understanding of how systems with "enhanced :security" work. More likely that not, "auth" is only able to write :the various files when some magical "trusted path" exists, or only :"trusted" applications can be executed by "auth" or some other :restriction. You will likely find that "auth" lacks whatever magic :cookie it is that would let any random program modify any random :file. If it doesn't we should all point our fingers at SecureWare :and laugh heartily. [Then we can point our fingers at OSF for :picking SecureWare as well ;-) ] I maintain that both "auth" and "sysadmin" give you indirect root privileges. With auth, you can create accounts or modify existing ones. With sysadmin, you can mount arbitrary things at arbitrary points, do dumps and restores etc. I'm sure you see how both of these quickly allow you to do anything you want. Secureware has only replaced one all-powerful account with several all-minus-one-powerful accounts, and anyone with 6 months experience at UNIX knows how to add that one back in. --tom