Hi!
> #define CAP_DAC_READ_SEARCH 2
>
> Hmm. OK, I can now read any file on the system. Read /etc/shadown,
> crack passwords from there. SOrry, there isn't any quicker way.
Unless passwords are properly choosen. But there's better way: read
someone's .ssh/identity and become him ;).
> #define CAP_NET_BIND_SERVICE 10
>
> - Bind to the portmapper, distract clients to my own nfs server.
> have clients to nasty things (to make me root)
> - rsh into local machine with false credentials.
This is actually capability I think is usefull. If you dont have rsh
on your machine, and portmapper is already running, you got nothing.
> #define CAP_NET_ADMIN 12
>
> Mjam. Ifconfig an interface to an IP of a trusted host. Dump
> packets on the net until I see "root" login?
When root is using ssh? No way to get root from this one.
Pavel
-- I'm pavel@ucw.cz. "In my country we have almost anarchy and I don't care." Panos Katsaloulis describing me w.r.t. patents me at discuss@linmodems.org- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Sat Feb 19 2000 - 17:51:31 EST