Previous Thread
Next Thread
Print Thread
Rate Thread
#8438 09/03/03 02:30 PM
Joined: Aug 2003
Posts: 8
Chasm Offline OP
Junior Member
OP Offline
Junior Member
Joined: Aug 2003
Posts: 8
I am trying to test how secure my linux box is. I have been trying to gain root on my local machine, and have tried many diferent ways. The latest way i have been thinking about, is copying a shell, such as bash, that is owned by root. Setting it to setuid, so that when it is run, it has root priveledges.

The only problems that i have encountered are, firstly, copying bash, changes the ownership of the file from root, to an un-priveledged user. Secondly, you have to be root to setuid from within a shell.

ANY help would be greatly appreciated. And yes, i have already had a good look for myself! Thanks

#8439 09/03/03 08:10 PM
Joined: Aug 2003
Posts: 240
Member
Offline
Member
Joined: Aug 2003
Posts: 240
lol yeah like you said you have to be root to setuid

Just find a suid'd program and overflow the buffer..
do the hackerslab styles, suprisingly quite alot of apps are suid..
or scoure the web for exploits and try em all out


The wise make mistakes, the fools repeat them
----------------------------------------
When you have eliminated the impossible, that which remains, however improbable, must be the truth
#8440 09/04/03 07:32 AM
Joined: Aug 2003
Posts: 8
Chasm Offline OP
Junior Member
OP Offline
Junior Member
Joined: Aug 2003
Posts: 8
How about making a copy of a shell, that can cause a buffer overflow itself, then automatically change the owner of the file to root, and setuid itself. Sort of like a stand-alone file, that would automatically gain you root, when it was executed. Obviously it would have to be system specific. Hmm, thats got me thinking now.


Link Copied to Clipboard
Member Spotlight
Phatal
Phatal
Houston, TX
Posts: 298
Joined: April 2004
Forum Statistics
Forums41
Topics33,840
Posts68,858
Average Daily Posts1
Members2,176
Most Online3,253
Jan 13th, 2020
Latest Postings
Where and how do you torrent?
by danni75 - 03/01/24 05:58 AM
Animation,
by JohanKaariainen - 08/15/19 01:18 AM
Blackbeard.....
by Gremelin - 10/03/18 07:02 PM
my old account still exists!
by Crime - 08/10/18 02:47 PM
Okay WTF?
by HenryMiring - 09/27/17 01:45 AM
The History Thread...
by Gremelin - 08/11/17 12:11 PM
My friend NEEDS your HELP!
by Lena01 - 07/21/17 12:06 AM
I'm having fun with this guy.
by gabithompson730 - 07/20/17 01:50 AM
I want to upgrade my phone
by gabithompson730 - 07/20/17 01:49 AM
Doom 3
by Cyrez - 09/11/14 08:58 PM
Amazon Gift Card Generator/KeyGen?te
by Gecko666 - 08/22/14 09:21 AM
AIM scene 99-03
by lavos - 09/02/13 08:06 AM
Planetside 2
by Crime - 03/04/13 07:10 AM
Beta Testers Wanted
by Crime - 03/04/13 06:55 AM
Hello Everyone
by Gremelin - 02/12/12 06:01 PM
Tracfone ESN Generator
by Zanvin Green - 01/18/12 01:31 PM
Python 3 issue
by Testing - 12/17/11 09:28 PM
tracfone airtime
by Drache86 - 07/30/11 03:37 AM
Backdoors and the Infinite
by ZeroCoolStar - 07/10/11 03:52 AM
HackThisZIne #12 Releaseed!
by Pipat2 - 04/28/11 09:20 PM
gang wars? l33t-wars?
by Gremelin - 04/28/11 05:56 AM
Consolidate Forums
by diggin2deep - 04/21/11 10:02 AM
LAN Hacking Noob
by Gremelin - 03/12/11 12:42 AM
Top Posters
UGN Security 41,392
Gremelin 7,203
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Likes Received
Ghost 2
Cyrez 1
Girlie 1
unreal 1
Crime 1
Powered by UBB.threads™ PHP Forum Software 7.7.5