Your browser does not seem to support CSS. If images appear below, please disregard them.
It appears that you're running an Ad-Blocker. This site is monetized by Advertising and by ">User Donations; we ask that if you find this site helpful that you whitelist us in your Ad-Blocker, or make a ">Donation to help aid in operating costs.
Previous Thread
Next Thread
Print Thread
Rate This Thread
#8438 - 09/03/03 09:30 PM Is this even possible  
Joined: Aug 2003
Posts: 8
Chasm Offline
Junior Member
Chasm  Offline
Junior Member

Joined: Aug 2003
Posts: 8
I am trying to test how secure my linux box is. I have been trying to gain root on my local machine, and have tried many diferent ways. The latest way i have been thinking about, is copying a shell, such as bash, that is owned by root. Setting it to setuid, so that when it is run, it has root priveledges.

The only problems that i have encountered are, firstly, copying bash, changes the ownership of the file from root, to an un-priveledged user. Secondly, you have to be root to setuid from within a shell.

ANY help would be greatly appreciated. And yes, i have already had a good look for myself! Thanks

Sponsored Links
#8439 - 09/04/03 03:10 AM Re: Is this even possible  
Joined: Aug 2003
Posts: 240
paradox Offline
paradox  Offline

Joined: Aug 2003
Posts: 240
New Zealand
lol yeah like you said you have to be root to setuid

Just find a suid'd program and overflow the buffer..
do the hackerslab styles, suprisingly quite alot of apps are suid..
or scoure the web for exploits and try em all out

The wise make mistakes, the fools repeat them
When you have eliminated the impossible, that which remains, however improbable, must be the truth
#8440 - 09/04/03 02:32 PM Re: Is this even possible  
Joined: Aug 2003
Posts: 8
Chasm Offline
Junior Member
Chasm  Offline
Junior Member

Joined: Aug 2003
Posts: 8
How about making a copy of a shell, that can cause a buffer overflow itself, then automatically change the owner of the file to root, and setuid itself. Sort of like a stand-alone file, that would automatically gain you root, when it was executed. Obviously it would have to be system specific. Hmm, thats got me thinking now.

Member Spotlight
Portland, OR; USA
Posts: 7,198
Joined: February 2002
Show All Member Profiles 
Forum Statistics
Average Daily Posts3
Most Online1,567
Apr 25th, 2010
Latest Postings
There is not any party like an arm party
by bagful on 04/27/17 06:26 AM
The innovative concept keep
by bagful on 04/27/17 06:25 AM
The Nike Blazer Studio Mid Decon
by bagful on 04/27/17 06:24 AM
a fresh white enhance midsole device
by bagful on 04/27/17 06:23 AM
shopping for jewelry with something above
by mikejoey on 04/12/17 08:01 AM
PANDORA North The usa
by mikejoey on 04/12/17 07:38 AM
Pandora’s birthstone products will always
by mikejoey on 04/12/17 07:14 AM
the newest Pandora necklaces crafting facility
by mikejoey on 04/12/17 06:53 AM
an Air Jordan 4 by Off White is in
by mikejoey on 04/12/17 06:35 AM
belonging to the adidas NMD XR1
by mikejoey on 04/12/17 05:50 AM
Top Posters(All Time)
UGN Security 41,138
Gremelin 7,198
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Liked Users (All Time)
§intå× Likes: 3
Black Beard Likes: 1
Cold Sunn Likes: 1
Crime Likes: 1
Cyrez Likes: 1
fleshwound Likes: 1
Ghost Likes: 2
Gremelin Likes: 12
Ice Likes: 1
ninjaneo Likes: 1
Top Liked Users (30 Days)
No Data Found
Powered by UBB.threads™ PHP Forum Software 7.6.0
(Snapshot build 20170206)