Re: [PEN-TEST] POSIX Subsystem on NT

From: Parity (parityat_private)
Date: Mon Apr 16 2001 - 21:48:51 PDT

Next message: John R. Sciandra: "Re: [PEN-TEST] Web site password guessing over SSL"

Previous message: paul miles: "[PEN-TEST] POSIX Subsystem on NT"
In reply to: paul miles: "[PEN-TEST] POSIX Subsystem on NT"
Next in thread: c0ncept: "Re: [PEN-TEST] POSIX Subsystem on NT"
Reply: c0ncept: "Re: [PEN-TEST] POSIX Subsystem on NT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Hello All
>
> I've got a question about the POSIX subsystem on NT.
>
> It is recommended that the POSIX subsystem is removed from NT and 2000
> for security reasons.  My question is why?
>
> Is it simply following the principle "if you don't need it remove it"?

Yes.

> Does the POSIX subsystem access resources (disk, etc) directly or does
> it sit on top of WIN32 and just provide a standard interface for POSIX
> compliant software?

Some of the POSIX subsystem calls turn around and call Win32, while others call
the NT native API directly, but none of that really matters (in theory, anyway)
because all the security is implemented and enforced internally by the
executive components of the kernel.

pty

Next message: John R. Sciandra: "Re: [PEN-TEST] Web site password guessing over SSL"
Previous message: paul miles: "[PEN-TEST] POSIX Subsystem on NT"
In reply to: paul miles: "[PEN-TEST] POSIX Subsystem on NT"
Next in thread: c0ncept: "Re: [PEN-TEST] POSIX Subsystem on NT"
Reply: c0ncept: "Re: [PEN-TEST] POSIX Subsystem on NT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Apr 16 2001 - 21:57:19 PDT