On 09/26/14 12:04, Brandon Allbery wrote:
On Fri, Sep 26, 2014 at 2:27 PM, Paul Graydon <[email protected]
<mailto:[email protected]>> wrote:
It's not as simple (or accurate) as that. dhclient that runs on
your machine to pick up IP addresses from a dhcp server runs as
root, and uses bash directly (regardless of what yours or roots
shell is). I don't know what OS X does specifically/, /if they're
running a patched version of dhclient or similar that doesn't
explicitly call root.
There are more DHCP clients than just ISC dhclient. OS X uses
something completely different, as far as I can tell; most likely it's
based around launchd and uses Mach ports and other OS X-specific IPC
instead of relying on the environment, and data not transmitted via
those probably goes via a property list.
Notably, there is no dhclient executable anywhere on my 10.9 box.
Sure.. my point is more that a number of programs on your machine might
be calling bash without you realising it, and that this exploit doesn't
necessarily require someone to already have access to your laptop, which
was the assertion I was responding to.
Paul
_______________________________________________
Tech mailing list
[email protected]
https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech
This list provided by the League of Professional System Administrators
http://lopsa.org/
