the NetInfo manager is just one thing the is likely to be opened and on
the desktop in sudo mode... the function is built in
however...
Any of these third party apps like snard or Pseudo which can open apps
as superuser in GUI
or if you sudo {{open BBEdit}}
and then close the terminal and open from the apple menu with BBEdit in
the front
same thing .....a terminal with root logged in...
and BBEdit *did not* show up in the list of apps generated by the "find"
method that Scott Anguish presented at Stepwise.
Apparently, as Randal suggested, the Apple Menu does not work correctly
while the Dock does.
for the time being limit your sudoers, don't leave any apps which have
been opened by sudo open on your desktop, and cloister your
administration apps away in a protected folder.
Then, still one copy of NetInfo Manager on a CD breaks in to root with
no passwords at all, if the desktop is open.
I have seen a few installers that demand a admin password, I guess they
must do the same.
I can't remember which ones though.
If people are working in a semi-public environment that's the current
risk.
however, if it is possible to "tell finder to open netinfo manager;tell
finder to open Recent Item Terminal.app with pipe to my console" like
with osascript.....
that sounds like big trouble.
as it is...
[devlin:~] jim% sudo -s
Password:
[devlin:~] root#
is scary enough if you didn't intend for your sudoers to be walking
around as root.
On Wednesday, October 17, 2001, at 09:02 PM, Kee Hinckley wrote:
> At 12:17 AM -0400 10/17/01, Kee Hinckley wrote:
>> Hmm. A little experimenting shows that this is also true of
>> everything in the Services menu. Do a find in netinfo. Enter
>
> Does anyone know how the Services menu works? Is it always
> interprocess invocation, or can a service be code executed in the
> context of the calling process? If the latter this is a hard problem
> to fix. Otherwise Apple just needs to put wrappers around the
> execution code.
>
> Has anyone looked to see if it's possible to take advantage of this
> with SOAP and/or Applescript?
>
> Either way, this will be a good test of how seriously Apple takes
> security. I would hope that we see a patch for this in no more than
> a week or so.
> - --
>
> Kee Hinckley - Somewhere.Com, LLC
>
>
---------------------------------------------------------------------------
reply directly to:
Jim Cooper
mailto:[EMAIL PROTECTED]
iMedia, Ltd.
Tokyo http://www.ai-media.co.jp
---------------------------------------------------------------------------
