From: "Kirill A. Shutemov" <k.shutemov@velesys.com>
To: ALT Linux Team development discussions <devel@lists.altlinux.org>
Subject: Re: [devel] kernel-headers-std
Date: Wed, 19 Sep 2007 18:20:58 +0300
Message-ID: <20070919152057.GA10298@localhost.localdomain> (raw)
In-Reply-To: <20070919135301.GF13831@basalt.office.altlinux.org>
[-- Attachment #1: Type: text/plain, Size: 2339 bytes --]
On [Wed, 19.09.2007 17:53], Dmitry V. Levin wrote:
> On Wed, Sep 19, 2007 at 04:30:03PM +0300, Kirill A. Shutemov wrote:
> > On [Wed, 19.09.2007 17:19], Dmitry V. Levin wrote:
> > > On Wed, Sep 19, 2007 at 04:14:33PM +0300, Kirill A. Shutemov wrote:
> [...]
> > > > nologin.c: Rewrite without glibc at all (#10729)
> > > >
> > > > Не совсем понятно зачем и как это могло пофиксить баг. Можно ли вернуть
> > > > обратно glibc?
> > >
> > > Если вернуть обратно glibc, то вернётся #10729.
> >
> > А что является причиной этого бага?
>
> Неправильная статическая линковка без libc.
>
> Зачем нужно линковать nologin без libc? Приведу цитату (лень переводить):
>
> "The dynamic linker and libc startup code checks a number of environment
> variables, which may seriously alter the behavior of the starting
> program - up to execution of arbitrary code (other than that found in
> the program). Login services such as telnetd/login and sshd allow for
> initial environment variables to be passed from the remote. This has
> actually been used to break into systems in the past.
>
> Now, modern/patched versions of login services use whitelists of
> known-safe environment variables - and allow only for those environment
> variables to be passed from the remote.
>
> But we can feel a little bit safer if our disabled accounts' "shells"
> would not be subject to this risk at all - and the only currently
> practical way to achieve that is to avoid the use of the dynamic linker
> and libc."
>
Вообщем из ядерных хидеров макросы _syscallX выкинули, завещав
использовать libc'шный syscall():
David Woodhouse:
The limited subset of old userland which elected to use _syscallX()
instead of libc's syscall(), and which can be fixed fairly easily.
http://lkml.org/lkml/2006/8/28/61
libc использовать в этом случае нельзя. Что будем делать?
--
Regards, Kirill A. Shutemov
+ Belarus, Minsk
+ Velesys LLC, http://www.velesys.com/
+ ALT Linux Team, http://www.altlinux.com/
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
next prev parent reply other threads:[~2007-09-19 15:20 UTC|newest]
Thread overview: 59+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-09-11 14:43 Kirill A. Shutemov
2007-09-11 14:50 ` Led
2007-09-11 14:58 ` Kirill A. Shutemov
2007-09-11 18:51 ` Dmitry V. Levin
2007-09-11 15:28 ` Led
2007-09-11 19:49 ` Dmitry V. Levin
2007-09-11 16:13 ` Led
2007-09-11 16:51 ` Sergey Vlasov
2007-09-11 20:20 ` Dmitry V. Levin
2007-09-11 16:48 ` Led
2007-09-11 16:02 ` Sergey Vlasov
2007-09-11 20:48 ` Kirill A. Shutemov
2007-09-11 21:03 ` Led
2007-09-11 21:14 ` Kirill A. Shutemov
2007-09-11 21:27 ` Led
2007-09-11 21:51 ` Led
2007-09-12 9:07 ` Sergey Vlasov
2007-09-12 9:38 ` Kirill A. Shutemov
2007-09-11 18:48 ` Dmitry V. Levin
2007-09-11 14:53 ` Kirill A. Shutemov
2007-09-11 15:22 ` Kirill A. Shutemov
2007-09-11 15:38 ` Led
2007-09-11 19:51 ` Dmitry V. Levin
2007-09-12 12:09 ` Kirill A. Shutemov
2007-09-13 17:40 ` Kirill A. Shutemov
2007-09-13 23:10 ` Dmitry V. Levin
2007-09-17 9:12 ` Kirill A. Shutemov
2007-09-17 17:21 ` Dmitry V. Levin
2007-09-17 17:35 ` Kirill A. Shutemov
2007-09-18 21:40 ` Dmitry V. Levin
2007-09-19 13:14 ` Kirill A. Shutemov
2007-09-19 13:19 ` Dmitry V. Levin
2007-09-19 13:30 ` Kirill A. Shutemov
2007-09-19 13:31 ` Kirill A. Shutemov
2007-09-19 13:53 ` Dmitry V. Levin
2007-09-19 14:01 ` Kirill A. Shutemov
2007-09-19 15:20 ` Kirill A. Shutemov [this message]
2007-09-19 15:52 ` Dmitry V. Levin
2007-09-19 16:02 ` Kirill A. Shutemov
2007-09-20 11:36 ` Kirill A. Shutemov
2007-09-20 11:39 ` Kirill A. Shutemov
2007-09-21 9:23 ` Kirill A. Shutemov
2007-09-21 9:27 ` Dmitry V. Levin
2007-09-21 9:40 ` Kirill A. Shutemov
2007-09-21 9:49 ` Dmitry V. Levin
2008-03-03 10:38 ` Kirill A. Shutemov, Dmitry V. Levin
2008-03-03 10:40 ` [devel] nologin Dmitry V. Levin
2008-03-03 11:07 ` Kirill A. Shutemov
2008-03-03 11:16 ` Sergey Vlasov
2008-03-03 16:52 ` Kirill A. Shutemov
2008-03-03 16:51 ` Dmitry V. Levin
2008-03-18 0:56 ` Dmitry V. Levin
2007-09-18 21:41 ` [devel] kernel-headers-std Dmitry V. Levin
2007-09-19 11:44 ` Kirill A. Shutemov
2007-09-23 21:54 ` Dmitry V. Levin
2007-09-24 7:08 ` Kirill A. Shutemov
2007-09-26 17:30 ` Kirill A. Shutemov
2007-09-26 19:09 ` Dmitry V. Levin
2007-09-18 9:56 ` Michael Shigorin
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20070919152057.GA10298@localhost.localdomain \
--to=k.shutemov@velesys.com \
--cc=devel@lists.altlinux.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux Team development discussions
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/devel/0 devel/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 devel devel/ http://lore.altlinux.org/devel \
devel@altlinux.org devel@altlinux.ru devel@lists.altlinux.org devel@lists.altlinux.ru devel@linux.iplabs.ru mandrake-russian@linuxteam.iplabs.ru sisyphus@linuxteam.iplabs.ru
public-inbox-index devel
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.devel
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git