Hi! On Tue, Jul 20, 1999 at 07:07:08PM +0200, Michael Schwingen wrote: > If someone gets a shell on your MiNT machine, you are in trouble anyway > unless you have a securelevel-protected setup Even in a securelevel-protected setup, there's still the possibility to write to supervisor protected memory (e.g. kernel space) by using Fread() to this memory. With a bit of knowlegde, a clever combination of Fread()/Fwrite() can change the user IDs of your process - duh. This isn't fixed easily, as it would either involve a lot of rewrites, or a performance loss for all functions returning data into a user-supplied buffer (where only the latter possibility will also help for machines without memory protection). Ciao Thomas -- Thomas Binder (Gryf @ IRCNet) gryf@hrzpub.tu-darmstadt.de PGP-key available on request! binder@rbg.informatik.tu-darmstadt.de Vote against SPAM: http://www.politik-digital.de/spam/
Attachment:
pgp6PJgBTHnFv.pgp
Description: PGP signature