Joerg Schilling schrieb am Mittwoch, den 20. Juni 2001: > >From [EMAIL PROTECTED] Tue Jun 19 23:25:06 2001 > > >[EMAIL PROTECTED] schrieb am Sonntag, den 17. Juni 2001: > > >> Well UNIX _allows_ you to be creative: use /tmp/xx.$$.someting > > >This is a gaping security hole. Especially given that cdrecord is often > >used as root or setuid root. > > If you prove me that you gained root privilleges using a recent cdrecord > in suid mode, I'll give you a bottle of Champain. Note that I was not claiming that cdrecord has a security hole, but some script. Walter -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
- Re: CDcontrol software released ( schilling
- Re: CDcontrol software released ( Bill Davidsen
- Re: CDcontrol software released ( schilling
- Re: CDcontrol software released ( schilling
- Re: CDcontrol software released ( Bill Davidsen
- Re: CDcontrol software released ( Alexander Skwar
- Re: CDcontrol software released ( Alexander Skwar
- Re: CDcontrol software released ( Alexander Skwar
- Re: CDcontrol software released ( Walter Hofmann
- Re: CDcontrol software released ( Joerg Schilling
- suid root cdrecord? Walter Hofmann
- suid root cdrecord? Meelis Roos
- Re: CDcontrol software released ( Joerg Schilling
- Re: CDcontrol software released ( Joerg Schilling
- Re: CDcontrol software released ( Alexander Skwar
- Re: CDcontrol software released ( Gleydson Mazioli da Silva
- Re: CDcontrol software released ( Bill Davidsen
- Re: CDcontrol software released ( Walter Hofmann
- Re: CDcontrol software released ( Bill Davidsen
- Re: CDcontrol software released ( Joerg Schilling
- Re: CDcontrol software released ( Alexander Skwar
