Re: how to avoid user1 becoming user2 using local root ?

• Previous message: Brian Hatch: "Re: nis : how to avoid user1 becoming user2 using local root ?"
• In reply to: Frédéric Médery: "nis : how to avoid user1 becoming user2 using local root ?"
• Next in thread: phaser-X: "Re: nis : how to avoid user1 becoming user2 using local root ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: Frédéric Médery <mederyf@LEXUM.UMontreal.CA>, "Mailing List Linux- Security" <focus-linux@securityfocus.com>
Date: Sat, 27 Mar 2004 17:55:56 -0300

  you can just write a kernel module to deny any set*uid() by returning a
EPERM when the process' current uid is 0, except when the "destination uid"
is some like apache's uid, or named user (when you start apache, you start
it as a root user, cuz it uses the port 80 that is a priviledged port, so,
it after this initial start, it becomes "apache-user-owned").

  []'s

  ----- Original Message -----
  From: "Frédéric Médery" <mederyf@LEXUM.UMontreal.CA>
  To: "Mailing List Linux- Security" <focus-linux@securityfocus.com>
  Sent: Friday, March 26, 2004 6:58 PM
  Subject: nis : how to avoid user1 becoming user2 using local root ?

> our situation :
> All linux servers, all nfs share use the root_squash option.
> We're using NIS
> All developpers can become root on their local machines.
>
> The prob : if user1 do a `su -` on their station. And then, `su user2`
> they can become user2.
>
> For me it's a huge problem (windows don't have this prob, local admin
> are very different from domain/server admin) is there a way to avoid
> this prob ?
>
> Thanks !
>
>

• Previous message: Brian Hatch: "Re: nis : how to avoid user1 becoming user2 using local root ?"
• In reply to: Frédéric Médery: "nis : how to avoid user1 becoming user2 using local root ?"
• Next in thread: phaser-X: "Re: nis : how to avoid user1 becoming user2 using local root ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: [PATCH -mm 1/2] user namespace : add unshare ... The idea with going with just these two patches for now is that the uid ... in the child namespace can be contained using selinux anyway. ... full capabilities to the new namespace. ... It would prevent the new root user from administrating users in the ... (Linux-Kernel) Re: whoami and bash ... Francois ... If you're checking for root user, you can use also $UID. ... echo "I am a lowly user with id $UID" ... (Fedora) Re: [PATCH -mm 1/2] user namespace : add unshare ... root users have full privileges and it seems that theses privileges should be ... it seems wrong for the kernel to hardwire knowledge about UID ... users from the now-unshared user namespace. ... Or maybe just remove that "Insert new root user" altogether? ... (Linux-Kernel) Re: sshing in with a non root user gives me a syslog error ... is there an entry in /etc/passwd for uid 95? ... ssh'ing in with a non root user gives me a syslog error ... (AIX-L)