DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD General

OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 23rd April 2010
bruguiea bruguiea is offline
New User
 
Join Date: Apr 2010
Posts: 8
Default What is the meaning of "remote hole"

If a user has a legitimate ssh access, but then while being logged in the machine, gains root access, is this a "remote hole?"

Tony
Reply With Quote
  #2   (View Single Post)  
Old 23rd April 2010
DutchDaemon's Avatar
DutchDaemon DutchDaemon is offline
Real Name: Ben
Spam Refugee
 
Join Date: Jul 2008
Location: Rotterdam, The Netherlands
Posts: 336
Default

No, that's a local privilege escalation (his initial access was legitimate). In this case, an unprivileged local user managed to elevate their privilege.
Reply With Quote
  #3   (View Single Post)  
Old 23rd April 2010
TerryP's Avatar
TerryP TerryP is offline
Arp Constable
 
Join Date: May 2008
Location: USofA
Posts: 1,547
Default

Two thoughts come to top of mind:

Exploiting a flaw in the FooSSH server to gain a ssh session logged into the account that server daemon is running as.

Sending IIS a malformed HTTP message that causes a buffer overflow, causing the web server to execute code crafted into the HTTP operation. (e.g. GET superlongstring/shutdown -s -t 0.)
__________________
My Journal

Thou shalt check the array bounds of all strings (indeed, all arrays), for surely where thou typest ``foo'' someone someday shall type ``supercalifragilisticexpialidocious''.
Reply With Quote
  #4   (View Single Post)  
Old 24th April 2010
bruguiea bruguiea is offline
New User
 
Join Date: Apr 2010
Posts: 8
Default

Thanks for the clarification. So when OpenBSD claims that they have only 2 remote holes, they don't count privilege escalation, do they?
Reply With Quote
  #5   (View Single Post)  
Old 24th April 2010
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 3,318
Default

Quote:
Originally Posted by bruguiea View Post
So when OpenBSD claims that they have only 2 remote holes, they don't count privilege escalation, do they?
No.
Reply With Quote
  #6   (View Single Post)  
Old 2nd May 2010
Carpetsmoker's Avatar
Carpetsmoker Carpetsmoker is offline
Real Name: Martin
Tcpdump Spy
 
Join Date: Apr 2008
Location: Netherlands
Posts: 2,243
Default

The "Only two remote holes in the default install, in a heck of a long time!"-claim is slightly misleading.
The default install has almost all network services turned off, and as was pointed out not all security problems are counted.

The claim is technically correct, but it does not mean what many people think it means.
__________________
UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things.
Reply With Quote
  #7   (View Single Post)  
Old 2nd May 2010
Android1's Avatar
Android1 Android1 is offline
Fdisk Soldier
 
Join Date: Mar 2009
Posts: 60
Default

Quote:
Originally Posted by Carpetsmoker View Post
The "Only two remote holes in the default install, in a heck of a long time!"-claim is slightly misleading.\
The default install has almost all network services turned off, and as was pointed out not all security problems are counted.
Indeed. OpenBSD 4.5 and 4.6 were patched for security reasons three times each.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
wpa_supplicant errors: "CTRL-EVENT-SCAN-RESULTS" jackburke FreeBSD General 0 1st February 2010 12:07 AM
Opera Port - conflicting pkgs in "make install" IronForge OpenBSD Packages and Ports 5 29th October 2009 05:10 AM
Fixed "xinit" after _7 _8, "how" here in case anyones' "X" breaks... using "nvidia" jb_daefo Guides 0 5th October 2009 09:31 PM
"Thanks" and "Edit Tags". diw Feedback and Suggestions 2 29th March 2009 12:06 AM
Newbie-friendly "printing in OpenBSD" guide wanted Shagbag OpenBSD Packages and Ports 5 7th July 2008 09:26 PM


All times are GMT. The time now is 11:28 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick