The debian-private mailing list leak, part 1. Volunteers have complained about Blackmail. Lynchings. Character assassination. Defamation. Cyberbullying. Volunteers who gave many years of their lives are picked out at random for cruel social experiments. The former DPL's girlfriend Molly de Blanc is given volunteers to experiment on for her crazy talks. These volunteers never consented to be used like lab rats. We don't either. debian-private can no longer be a safe space for the cabal. Let these monsters have nowhere to hide. Volunteers are not disposable. We stand with the victims.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: is nobody a security hole?

To: Joey Hess <joey@kite.ml.org>
Subject: Re: is nobody a security hole?
From: John Goerzen <jgoerzen@complete.org>
Date: 04 Oct 1997 15:37:12 -0500
Cc: security@lists.debian.org
Delivered-to: bruce-lists-security@lists.debian.org
In-reply-to: Joey Hess's message of Wed, 1 Oct 1997 18:40:37 -0400
References: <19971001184037.40378@kite>
Resent-cc: recipient list not shown: ;
Resent-date: 5 Oct 1997 07:25:32 -0000
Resent-from: debian-private@lists.debian.org
Resent-message-id: <"f1zrFB.A.yZG.sD0N0"@debian>
Resent-sender: debian-private-request@lists.debian.org

Often, I see it set to something like /nonexistant with a shell set to
/bin/false or something.

Joey Hess <joey@kite.ml.org> writes:

> nobody:*:65534:65534:nobody:/tmp:/bin/sh
> 
> I've been wondering if having a user with a world-writable home directory
> like this is a security hole. So far all I've thought of is this:
> 
> joey@kite:/tmp>echo "echo ha! I gotcha" > /tmp/.profile
> 
> (Then wait for root to su to nobody with a login shell)
> 
> root@kite:/tmp>su - nobody
> ha! I gotcha
> $ 
> 
> I think this by itself should be enough to make us change nobody's home
> directory to something secure.
> 
> -- 
> see shy jo
> 
> 
> --
> TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
> debian-private-request@lists.debian.org . 
> Trouble?  e-mail to templin@bucknell.edu .
> 

-- 
John Goerzen          | Running Debian GNU/Linux (www.debian.org)
Custom Programming    | Debian GNU/Linux is a free replacement for
jgoerzen@complete.org | DOS/Windows -- check it out at www.debian.org.
----------------------+----------------------------------------------
Notice: You may purchase the right to send me unsolicited commercial e-mail
("spam") for the fee of $500 (USD) per message.  Billing can be either
pre-arranged or can occur automatically after the reception of a spam.
Failure to pay will be treated in accordance to US Code, title 47, sec. 227,
which allows unsolicited e-mail to be punishable by action to recover actual
monetary loss or $500, whichever is greater, per violation.  Sending spam
to me without payment constitutes unauthorized access to my mail daemon,
which is in violation of federal law.


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-private-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Follow-Ups:
- Re: is nobody a security hole?
  - From: Galen Hazelwood <galenh@micron.net>

References:
- is nobody a security hole?
  - From: Joey Hess <joey@kite.ml.org>

Prev by Date: I'm back
Next by Date: Re: is nobody a security hole?
Previous by thread: Re: is nobody a security hole?
Next by thread: Re: is nobody a security hole?
Index(es):
- Date
- Thread