Hello Johnny, On Wed, 2017-02-15 at 09:47 -0600, Johnny Hughes wrote: > 2. They already have shell access on the machine in question and they > can already run anything in that shell that they can run via what you > are pointing out. No, assuming noexec /home mounts all they can run is system binaries. > 3. If they have access to a zeroday issue that give them root .. they > can just use that via their shell that they already have (that you gave > them, which they are using) to get root .. they therefore don't need to > use this issue at all. No, assuming noexec /home mounts all they have to leverage a zero day are system binaries. pkcheck to the rescue. Regards, Leonard. -- mount -t life -o ro /dev/dna /genetic/research _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx https://lists.centos.org/mailman/listinfo/centos
Re: Serious attack vector on pkcheck ignored by Red Hat
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Leonard den Ottolander <leonard@xxxxxxxxxxxxxxxxx>
- Date: Wed, 15 Feb 2017 16:55:15 +0100
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <eb645a59-4a19-2189-7b6d-bcc3a19ecca3@centos.org>
- References: <1486045336.5163.6.camel@quad> <bf79662d-62a9-fd7d-bc4d-c96340029f74@hogranch.com> <1486047065.5163.8.camel@quad> <e767e804-f9d6-a45b-5299-7f56579fdb9a@gmail.com> <1486049754.5163.22.camel@quad> <04628b0c-98bd-d3f9-ca84-6adbcd8d5c1c@gmail.com> <1486064784.12088.31.camel@quad> <4a8f0e53-c5b2-61fd-b6cb-21e97f713b7c@gmail.com> <1486067854.12088.47.camel@quad> <c034e273-2c7b-1709-242c-c162f4967a13@gmail.com> <1486674227.5127.39.camel@quad> <271BC3C5-E237-40B3-93C2-A2A384F03521@etr-usa.com> <1486676382.5127.55.camel@quad> <84B9DF36-7475-4562-8879-22B1F16CC8A6@etr-usa.com> <1487173028.5199.11.camel@quad> <eb645a59-4a19-2189-7b6d-bcc3a19ecca3@centos.org>
- Follow-Ups:
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Chris Adams
- Re: Serious attack vector on pkcheck ignored by Red Hat
- References:
- Serious attack vector on pkcheck ignored by Red Hat
- From: Leonard den Ottolander
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: John R Pierce
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Leonard den Ottolander
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Gordon Messmer
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Leonard den Ottolander
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Gordon Messmer
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Leonard den Ottolander
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Gordon Messmer
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Leonard den Ottolander
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Gordon Messmer
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Leonard den Ottolander
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Warren Young
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Leonard den Ottolander
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Warren Young
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Leonard den Ottolander
- Re: Serious attack vector on pkcheck ignored by Red Hat
- From: Johnny Hughes
- Serious attack vector on pkcheck ignored by Red Hat
- Prev by Date: Re: Serious attack vector on pkcheck ignored by Red Hat
- Next by Date: Re: CentOS 7, systemd, NetworkMangler, oh, my
- Previous by thread: Re: Serious attack vector on pkcheck ignored by Red Hat
- Next by thread: Re: Serious attack vector on pkcheck ignored by Red Hat
- Index(es):
 |