On 9/27/07, Akemi Yagi <amyagi@xxxxxxxxx> wrote: > On 9/27/07, Jim Perrin <jperrin@xxxxxxxxx> wrote: > > On 9/27/07, Ralph Angenendt <ra+centos@xxxxxxxxxxxx> wrote: > > > umair shakil wrote: > > > > and also tell u r login as root user???? > > > > > > Why should that be of any interest? > > > > To evaluate the potential success of a rootkit? Since I've been told before that sarcasm is unbecoming (though damn funny), I'll explain a bit further. Running ./configure and make as root can open your system to potential threats if you're not careful. While somewhat unlikely, there may be a root kit in the code, which building as root triggers. The bigger threat comes from errors in the Makefile, or the code itself, such that an errant cleanup script during the build process does an rm -rf /* instead of an rm -rf $buildroot/* or some other similar flawed command. Building as a normal user may also clue you in to other flaws in the code, such as an inability to function for users other than root, linking to a directory where it doesn't need access, etc. > As already pointed out by two big boys... when running: Hey! I'm not that big! Besides, I've exercising lately, and eating more things that eat vegetables. Got to keep my computer muscles in shape dammit! -- During times of universal deceit, telling the truth becomes a revolutionary act. George Orwell _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: A quick question about ./configure
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: "CentOS mailing list" <centos@xxxxxxxxxx>
- Subject: Re: A quick question about ./configure
- From: "Jim Perrin" <jperrin@xxxxxxxxx>
- Date: Thu, 27 Sep 2007 12:33:24 -0400
- Delivered-to: centos@xxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=45hCetEL18l+GtseC5P+ngePNwvne+6AAcvPFRg+Jlc=; b=TaoPL6rn7RWT9Gm7swTkmTXh4X4zaRhP9Ju5h3IKF8qk8Q/yBtWxfZ2L07+ASr2pGA39/bKytJQYqmCx90++sGzNCv5b9+o9vMOm2DC+Om3qi1oy/sUvoM0TVNxe2cbzQHZwsH/6xMqSaf4BLsxUiLt+Y73xiUWaFCv0aHAYKqg=
- In-reply-to: <bfa89a870709270715l16f67d3fj2d34add1712383cc@xxxxxxxxxxxxxx>
- References: <703791.83069.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <46FAC2AD.1060009@xxxxxxxxx> <46FAD5AD.5060208@xxxxxxxxxxxxxxxxxxx> <804b226c0709262123p5ff04b5o499b45d21c6d0e6@xxxxxxxxxxxxxx> <20070927105811.GQ19636@xxxxxxxxxxxx> <302ce8b50709270516g7fd76b3cp65ab42f85082372c@xxxxxxxxxxxxxx> <bfa89a870709270715l16f67d3fj2d34add1712383cc@xxxxxxxxxxxxxx>
- Follow-Ups:
- Re: A quick question about ./configure
- From: William L. Maltby
- Re: A quick question about ./configure
- References:
- Re: remote tar via ssh
- From: ann kok
- Re: remote tar via ssh
- From: Les Mikesell
- A quick question about ./configure
- From: Ing. Manuel Lazo
- Re: A quick question about ./configure
- From: umair shakil
- Re: A quick question about ./configure
- From: Ralph Angenendt
- Re: A quick question about ./configure
- From: Jim Perrin
- Re: A quick question about ./configure
- From: Akemi Yagi
- Re: remote tar via ssh
- Prev by Date: Able to open TCP session, but unable to receive html content
- Next by Date: Re: Waking up X
- Previous by thread: Re: A quick question about ./configure
- Next by thread: Re: A quick question about ./configure
- Index(es):
 |