[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] AIX 4.3.3 has make sgid 0?

To: Darren Tucker <dtucker@xxxxxxxxxx>
Subject: Re: [Full-Disclosure] AIX 4.3.3 has make sgid 0?
From: Sullivan.Danielj@xxxxxxxxxxxxxxx
Date: Tue, 23 Mar 2004 12:35:11 -0500

The "make" to worry about appears to be the one in /usr/local/bin, not 
/usr/ccs/bin.  See the sample exploit script at the usual spot.

The problem appears to be with GNU's make, which is installed setgid (by 
default) on AIX so as to enable the "-l load" option.  This option is used 
to throttle the number of jobs created by "make" as the system load 
increases (especially during parallel makes).

I haven't checked whether /usr/local/bin/make is part of some supplemental 
AIX package, or just happens to be on those systems where the admin 
installed GNU make.

References:
- Re: [Full-Disclosure] AIX 4.3.3 has make sgid 0?
  - From: Darren Tucker

Prev by Date: RE: [Full-Disclosure] viruses being sent to this list
Next by Date: Re: [Full-Disclosure] ISS 'Witty' Worm Analyzed
Previous by thread: Re: [Full-Disclosure] AIX 4.3.3 has make sgid 0?
Next by thread: [Full-Disclosure] commerical rainbow crack?
Index(es):
- Date
- Thread