Kmem security (was: Re: How do you make your UNIX crash ???)
Chris Calabrese
cjc at ulysses.att.com
Thu Mar 14 00:11:03 AEST 1991
brendan at cs.widener.edu (Brendan Kehoe) writes:
>In <513 at bria>, uunet!bria!mike writes:
>>In an article, tndsyd.oz.au!berny (Berny Goodheart) writes:
>>>I am interested in finding out known ways to make your version of UNIX
>>>crash.
>> if ( (fd = open("/dev/kmem",O_RDWR)) == -1 )
>
> If your sysadmin (much less the vendor itself) left /dev/kmem world
> WRITABLE, they're begging for this kind of thing. Readable, possibly;
> writable, c'mon.
Allowing any access to /dev/kmem is asking for trouble.
It's possible to become root on a system which
has a readable /dev/kmem without too much trouble.
After that, it's all over.
If you want certain programs to access kmem (ps, top, etc),
make them sgid to group kmem and make kmem readable to group kmem.
Name: Christopher J. Calabrese
Brain loaned to: AT&T Bell Laboratories, Murray Hill, NJ
att!ulysses!cjc cjc at ulysses.att.com
Obligatory Quote: ``pher - gr. vb. to schlep. phospher - to schlep light.philosopher - to schlep thoughts.''
More information about the Comp.unix.admin
mailing list