Re: Insecurities in Non-exclusive Scoket Binding

From: David Wagner (dawat_private)
Date: Mon Mar 10 2003 - 20:49:57 PST

Next message: Oliver Friedrichs: "Re: Insecurities in Non-exclusive Scoket Binding"

Previous message: Ian Clelland: "Re: Some questions on DES Encryption..."
In reply to: Firosh Ummer: "Insecurities in Non-exclusive Scoket Binding"
Next in thread: Oliver Friedrichs: "Re: Insecurities in Non-exclusive Scoket Binding"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Firosh Ummer  wrote:
>Socket hijacking itself is not new - it has been cited in several sources 
>on the net. What I find disturbing is how easy it is for an attacker to 
>hijack a privileged connection and then insert privileged commands, 
>running with very low privileges.

This is an old, old story.  I remember reading many years ago about this
kind of attack on NFS.  (NFS runs on port 2049.)  You're right that it's
an issue, and I don't know of any perfect defense.  But then, most Unices
are frankly not very secure against local privilege elevation attacks,
so I wouldn't rely too heavily on standard Unix distributions to prevent
non-root users from getting root anyway.  (Maybe I'm alone in that last
sentiment.)

Next message: Oliver Friedrichs: "Re: Insecurities in Non-exclusive Scoket Binding"
Previous message: Ian Clelland: "Re: Some questions on DES Encryption..."
In reply to: Firosh Ummer: "Insecurities in Non-exclusive Scoket Binding"
Next in thread: Oliver Friedrichs: "Re: Insecurities in Non-exclusive Scoket Binding"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Mar 11 2003 - 08:15:13 PST