Archives
Archives
| From: | pageexec@××××××××.hu | ||
|---|---|---|---|
| To: | gentoo-hardened@l.g.o, Eric Pretorious <ericp@××.net> | ||
| Subject: | Re: [gentoo-hardened] Exploitable Weakness: Shared Memory | ||
| Date: | Fri, 15 Oct 2004 20:57:27 | ||
| Message-Id: | 4170557C.8007.2F7F0CAB@localhost | ||
| In Reply to: | Re: [gentoo-hardened] Exploitable Weakness: Shared Memory by Eric Pretorious |
||
| 1 | > >Presumably the attacker first used some other vulnerability to gain access to |
| 2 | > >your server. |
| 3 | > |
| 4 | > A valid user was able to install/execute a root-kit from /dev/shm. |
| 5 | |
| 6 | a rootkit doesn't exploit a system per se, it is used to maintain control. |
| 7 | so the more important question is, how your user got root to begin with. |
| 8 | |
| 9 | |
| 10 | -- |
| 11 | gentoo-hardened@g.o mailing list |