Page 1 of 2 1 2
Reply
Thread Tools
neiljerram is offline neiljerram
2006-01-17 , 18:12
Posts: 106 | Thanked: 3 times | Joined on Dec 2005
#1
Would it work to prepare a .deb with a setuid binary, and then install that?
 
AaronL is offline AaronL
2006-01-17 , 19:23
Posts: 81 | Thanked: 1 time | Joined on Dec 2005
#2
I don't think so. When a .deb package is installed, it is installed by the install user, which has the same rights as the regular user (named "user"). Neither user has the rights to create setuid binaries.

Also, if it worked as you suggest, this would be a security bug that would likely be closed in a future release of the firmware.

Aaron
 
slackwaresupport is offline slackwaresupport
2006-01-17 , 19:51
Posts: 29 | Thanked: 2 times | Joined on Jan 2006
#3
user ALL = (install) NOPASSWD: /usr/bin/app-installer-tool
user ALL=(install) NOPASSWD: /usr/bin/app-installer-tool
 
Hedgecore's Avatar
Hedgecore is offline Hedgecore
2006-01-17 , 20:25
Posts: 1,361 | Thanked: 115 times | Joined on Oct 2005 @ Toronto, Ontario, Canada
#4
Still requires root to edit
 
slackwaresupport is offline slackwaresupport
2006-01-17 , 20:47
Posts: 29 | Thanked: 2 times | Joined on Jan 2006
#5
nono.. thats already in /etc/sudoers
 
AaronL is offline AaronL
2006-01-17 , 20:49
Posts: 81 | Thanked: 1 time | Joined on Dec 2005
#6
Originally Posted by slackwaresupport
user ALL = (install) NOPASSWD: /usr/bin/app-installer-tool
user ALL=(install) NOPASSWD: /usr/bin/app-installer-tool
And your point is? This means that app-install-tool will be invoked under the install user account, as I stated in my earlier post. The install user account doesn't have any more privileges than the regular user account.

Aaron
 
slackwaresupport is offline slackwaresupport
2006-01-17 , 20:55
Posts: 29 | Thanked: 2 times | Joined on Jan 2006
#7
the question was would a .deb installer of a new gainroot file work without rebooting in rdmode. the answer is yes. because the user has sudo privileges to install new .deb files. hence it would overwrite the old gainroot.
 
henry is offline henry
2006-01-17 , 21:31
Posts: 111 | Thanked: 9 times | Joined on Nov 2005 @ Hong Kong
#8
Originally Posted by slackwaresupport
the question was would a .deb installer of a new gainroot file work without rebooting in rdmode. the answer is yes. because the user has sudo privileges to install new .deb files. hence it would overwrite the old gainroot.
If you really think this is going to work, then please prove it! Make an installer package that overwrite gainroot.
 
aflegg's Avatar
aflegg is offline aflegg
2006-01-17 , 23:01
Posts: 1,463 | Thanked: 81 times | Joined on Oct 2005 @ UK
#9
I'm with Aaron: the problems will be two fold:
  1. The app-installer-tool is run as `install', not `root' so it can't create a setuid root binary
  2. The app-installer-tool installs everything under /var/lib/install, but gainroot is in /usr/sbin.

You could produce a deb which would be extracted using dpkg -x new_gainroot.deb /, however that wouldn't gain anything over "copy this new gainroot to /usr/sbin", "untar this tarball over /" or "run patch against this diff".
 
putkowski is offline putkowski
2006-01-18 , 01:37
Posts: 155 | Thanked: 10 times | Joined on Nov 2005 @ central georgia, usa
#10
Originally Posted by slackwaresupport
the question was would a .deb installer of a new gainroot file work without rebooting in rdmode. the answer is yes. because the user has sudo privileges to install new .deb files. hence it would overwrite the old gainroot.
Some japanese:

I dough sink so.

The closest I've come is enabling scp by creating a symlink and then executing a scp with explicit from and to ip's and users.
Last edited by putkowski; 2006-01-18 at 01:40.
 
Reply
Page 1 of 2 1 2

« Previous Thread | Next Thread »
Thread Tools

 
Forum Jump


All times are GMT. The time now is 18:32.

Contact Us - Home - Archive - Top