[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] RaQ4-All-Kernel-1.0.1-2.216C24III.pkg

Subject: Re: [cobalt-security] RaQ4-All-Kernel-1.0.1-2.216C24III.pkg
From: Peter Batenburg <peter@xxxxxxxxxx>
Date: Thu, 26 Apr 2001 23:21:04 +0200
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Oh yes it is:

> [admin@xx10 admin]$ ./prak /usr/sbin/traceroute
> bug exploited successfully.
> enjoy!
> bash# id
> bash# uid=0(root) gid=0(root)
> groups=27(admin),10(wheel),110(home),111(site-adm)
> bash# uname -a
> bash# Linux xx10.test.nl 2.2.16C24_III #1 Thu Mar 22 21:17:39 PST 2001 i586
> unknown
> bash#


At 11:05 26-4-2001 -0700, you wrote:

On Thu, 26 Apr 2001, Dennis Koster wrote:

> On Thu, Apr 26, 2001 at 09:49:18AM +0200, Miro Majcen wrote:
> > i was just wondering if anyone already applied the
> > RaQ4-All-Kernel-1.0.1-2.216C24III.pkg package released yesterday ?
>
> the pkg isn;t a problem,
> the kernel version is.
>
> All kernels below the 2.2.19 are rootable
> So we want 2.2.19 or higher (If it was up to me I would go for a 2.4.x one)
If you'll read what's posted in the download page, they said  the bugs of
the ptrace() and sysctl() functions have been fixed there.  If Cobalt
keeps their former way of deploying Linux, they manually twaeak the kernel
to fit to what they need... so... it's not rootable.

References:
- Re: [cobalt-security] RaQ4-All-Kernel-1.0.1-2.216C24III.pkg
  - From: Dennis Koster

Prev by Date: RE: [cobalt-security] RaQ4-All-Kernel-1.0.1-2.216C24III.pkg
Next by Date: Re: [cobalt-security] RaQ4-All-Kernel-1.0.1-2.216C24III.pkg
Previous by thread: Re: [cobalt-security] RaQ4-All-Kernel-1.0.1-2.216C24III.pkg
Next by thread: Re: [cobalt-security] RaQ4-All-Kernel-1.0.1-2.216C24III.pkg

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index