From: "Theo de Raadt"
Subject: Re: ldd error with setuid/setgid binaries
Date: Wed, 18 Oct 2023 10:01:34 -0600
> But anyways, you are not talking about OpenBSD.
I am using the normal OpenBSD 7.4 installation from ftp.jaist.ac.jp,
one of the official mirrors.
I am
On Wed, Oct 18, 2023 at 09:38:32PM +0200, Theo Buehler wrote:
> On Thu, Oct 19, 2023 at 01:39:00AM +0900, Yoshihiro Kawamata wrote:
> > From: Marc Espie
> > Subject: Re: ldd error with setuid/setgid binaries
> > Date: Wed, 18 Oct 2023 18:04:45 +0200
> >
> > &
On Thu, Oct 19, 2023 at 01:39:00AM +0900, Yoshihiro Kawamata wrote:
> From: Marc Espie
> Subject: Re: ldd error with setuid/setgid binaries
> Date: Wed, 18 Oct 2023 18:04:45 +0200
>
> > objdump -p
> > will be as good.
> >
> > Yes, it does not recurse, bu
From: Stuart Henderson
Subject: Re: ldd error with setuid/setgid binaries
Date: Wed, 18 Oct 2023 13:58:26 +0100
> There are two approaches.
>
> - use another tool to read the ELF header and parse NEEDED entries
> from that. several are available (including at least one which wi
From: Marc Espie
Subject: Re: ldd error with setuid/setgid binaries
Date: Wed, 18 Oct 2023 18:04:45 +0200
> objdump -p
> will be as good.
>
> Yes, it does not recurse, but it doesn't need to, since you also
> want to wipe libraries that link with old libraries.
This seems to be
On Wed, Oct 18, 2023 at 11:41:12PM +0900, Yoshihiro Kawamata wrote:
> From: "Theo de Raadt"
> Subject: Re: ldd error with setuid/setgid binaries
> Date: Wed, 18 Oct 2023 06:35:51 -0600
>
> > You don't explain why you need to do this. You just completely skipped
>
Yoshihiro Kawamata wrote:
> From: "Theo de Raadt"
> Subject: Re: ldd error with setuid/setgid binaries
> Date: Wed, 18 Oct 2023 06:35:51 -0600
>
> > You don't explain why you need to do this. You just completely skipped
> > that.
> > You don't justify
From: "Theo de Raadt"
Subject: Re: ldd error with setuid/setgid binaries
Date: Wed, 18 Oct 2023 06:35:51 -0600
> You don't explain why you need to do this. You just completely skipped that.
> You don't justify why you need it to work. Does that make me care?? No, it
> rea
Stuart Henderson wrote:
> On 2023/10/18 06:35, Theo de Raadt wrote:
> > ldd around suid programs has a fine history of security holes.
> >
> > One idea is for you to just not not do that.
> >
> > You don't explain why you need to do this. You just completely skipped
> > that.
> > You don't
On 2023/10/18 06:35, Theo de Raadt wrote:
> ldd around suid programs has a fine history of security holes.
>
> One idea is for you to just not not do that.
>
> You don't explain why you need to do this. You just completely skipped that.
> You don't justify why you need it to work. Does that
.
Yoshihiro Kawamata wrote:
> From: Stuart Henderson
> Subject: Re: ldd error with setuid/setgid binaries
> Date: Wed, 18 Oct 2023 10:00:19 - (UTC)
>
> > ldd started using execpromises, and:
> >
> > /* SUID programs may not be started with execpromises */
>
From: Stuart Henderson
Subject: Re: ldd error with setuid/setgid binaries
Date: Wed, 18 Oct 2023 10:00:19 - (UTC)
> ldd started using execpromises, and:
>
> /* SUID programs may not be started with execpromises */
I see. thank you.
I created and used a shell script to crea
On 2023-10-18, Yoshihiro Kawamata wrote:
> In OpenBSD 7.4, running ldd on a setuid or setgid executable returns
> an error. Why is this?
ldd started using execpromises, and:
/* SUID programs may not be started with execpromises */
In OpenBSD 7.4, running ldd on a setuid or setgid executable returns
an error. Why is this?
# ls -l atrm
-r-xr-sr-x 1 root crontab 34864 Oct 10 23:41 atrm
# ldd atrm
atrm:
atrm: Permission denied
atrm: exit status 1
# chmod g-s atrm
# ls -l atrm
-r-xr-xr-x 1 root crontab
14 matches
Mail list logo
