Regarding Mudge's OBP/FORTH root hack (PHRACK53)

From: Jericho Nunn (jnunn6at_private)
Date: Fri Jul 10 1998 - 01:12:52 PDT

Next message: Bug Lord: "Re: SmurfLog 1.0"

Previous message: Dagmar d'Surreal: "Re: port 0 scanning"
Next in thread: John W. Temples: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: John W. Temples: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Mike Scher: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Gene Spafford: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: James Bonfield: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Casper Dik: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Casper Dik: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Darren J Moffat - SunService ETZ-N OS Product Support Group: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Leendert van Doorn: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Dr. Mudge: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Aggelos P. Varvitsiotis: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Eric Johnson: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Casper Dik: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

    Aside from the fact that it left me quite flabbergasted for quite
some time, mudge's OBP memory manipulation for aquiring root priviledges
poses a serious risk for environments where SUN workstation consoles are
easily accesible to unpriviledged individuals, such as university labs.

    An easy and quick work-around that avoids granting  just anybody at
the console the ability to "Stop-A" and drop into OBP, is to enable the
"security-mode" and "security-password" variables within OBP.  Changing
the default value of "security-mode" from 'none' to 'full', forces a
user who tries to halt the system to authenticate against the password
defined in "security-password" before having access to the OBP command
line.

    Again, mudge never stops to amaze....

Regards,
Jericho.

Next message: Bug Lord: "Re: SmurfLog 1.0"
Previous message: Dagmar d'Surreal: "Re: port 0 scanning"
Next in thread: John W. Temples: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: John W. Temples: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Mike Scher: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Gene Spafford: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: James Bonfield: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Casper Dik: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Casper Dik: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Darren J Moffat - SunService ETZ-N OS Product Support Group: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Leendert van Doorn: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Dr. Mudge: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Aggelos P. Varvitsiotis: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Eric Johnson: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Reply: Casper Dik: "Re: Regarding Mudge's OBP/FORTH root hack (PHRACK53)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:03:15 PDT