|
OpenBSD Security Functionally paranoid! |
|
Thread Tools | Display Modes |
|
|||
Living off the Land tools list for OpenBSD
Hello,
When it comes to hardening of Windows or Gnu/Linux there are lists such as Microsoft recommended block rules, LOLBAS and GTFOBins. These are lists of legitimate preinstalled system applications that can be used by attacker to conduct harmful activity and circumvent access control mechanisms be it DAC or something else. Are there lists for OpenBSD of that kind of binaries?
__________________
Signature: Furthermore, I consider that systemd must be destroyed. Based on Latin oratorical phrase |
|
|||
Parts of this list are borderline ridiculous. Like, wow, did you know that ed(1) can read files?
Seriously though, if you are running a machine in which you are deliberately putting people in a restricted shell, then you (hopefully) already know that you cannot just put them in a restricted shell in the normal operating environment, and have taken the steps to put them in their own chroot(8) or something. Or better yet, if you really have such restrictions, you should write better policy to completely deny any and all access to those machines. Perhaps airgap the machine too, just to be safe. |
|
|||
Quote:
__________________
Signature: Furthermore, I consider that systemd must be destroyed. Based on Latin oratorical phrase |
Tags |
gtfobins, lolbins, lotl |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
growisofs (dvd+rw-tools) in openbsd | yezster | OpenBSD Packages and Ports | 1 | 24th August 2016 01:04 AM |
OpenBSD STARCH - OpenBSD user land/Linux kernel | shep | News | 0 | 29th January 2013 12:31 AM |
OpenBSD Gnome/XFCE tools | Noobification | OpenBSD Packages and Ports | 7 | 23rd December 2010 09:36 PM |
OpenBSD mailing list | Mr-Biscuit | Off-Topic | 4 | 2nd May 2010 04:06 PM |
Vmware tools on Openbsd 4.6? | Stellar | OpenBSD Installation and Upgrading | 8 | 26th December 2009 07:42 PM |