PATH HOWTO: Security concerns

Topics:

All Pages 8021X HOWTO ACP Modem ACPI HOWTO ADSL Bandwidth Man..ATA RAID HOWTO ATM Linux HOWTO AX25 HOWTO Accessibility Dev ..Accessibility HOWTO Adv Bash Scr HOWTO Adv Routing HOWTO Antares RAID sparc..Apache Compile HOWTO Apache WebDAV LDAP..Assembly HOWTO Astronomy HOWTO Athlon Powersaving..Authentication Gat..Autodir HOWTO Aviation HOWTO Avr Microcontrolle..BRIDGE STP HOWTO BTTV BackspaceDelete Bandwidth Limiting..Bangla HOWTO Bash Prompt HOWTO Battery Powered Belarusian HOWTO Belgian HOWTO Beowulf HOWTO Boca BogoMips Bootdisk HOWTO Bridge C++ dlopen C C++Beautifier HO..C editing with VIM..CDROM HOWTO CDServer HOWTO Cable Modem Caudium HOWTO Clone HOWTO Compaq Remote Insi..Compaq T1500 HOWTO Conexant+Rockwell ..Cryptoloop HOWTO DB2 HOWTO DHCP DSL HOWTO DVD Playback HOWTO Debian Binary Pack..Debian Jigdo Debian and Windows..Disk Encryption HO..Disk on Chip HOWTO DocBook Demystific..DocBook Install DocBook OpenJade S..Ecology HOWTO Emacspeak HOWTO Encourage Women Li..Encrypted Root Fil..Euro Char Support Event HOWTO Fedora Multimedia ..Finnish HOWTO Firewall Piercing Flash Memory HOWTO Font HOWTO Framebuffer HOWTO GCC HOWTO GIS GRASS Glibc Install HOWTO HOWTO HOWTO HOWTO INDEX HP HOWTO Handspring Visor Hard Disk Upgrade Hardware HOWTO HighQuality Apps H..Home Electrical Co..IBM7248 HOWTO IO Perf HOWTO IP Alias IP Masquerade HOWTO IRC Implement Sys Call..Indic Fonts HOWTO Infrared HOWTO IngresII HOWTO Install Strategies Installation HOWTO Installfest HOWTO Intkeyb Italian HOWTO Jabber Server Farm..JavaStation HOWTO Kerberos Infrastru..Kernel HOWTO Kerneld Kodak Digitalcam H..LDAP HOWTO LDP Reviewer HOWTO LILO crash rescue ..LVM HOWTO Leased Line Lego Linksys Blue Box R..Linux+Win95 Linux+Win9x+Grub H..Linux+Windows HOWTO Linux Complete Bac..Linux Crash HOWTO Linux Gamers HOWTO Linux Modem Sharing Linux Promise RAID..Linux i386 Boot Co..LinuxGL QuakeWorld..Lotus DominoR5 MILO HOWTO MMBase Inst HOWTO MP3 CD Burning Mail User HOWTO Majordomo MajorCoo..Man Page Masquerading Simpl..Medicine HOWTO MindTerm SSH HOWTO Mobile IPv6 HOWTO Mock Mainframe Module HOWTO Modules Motorola Surfboard..Mozilla Optimization Multi Distro Dev NCURSES Programmin..NFS HOWTO NFS Root Client mi..NIS HOWTO NetMeeting HOWTO Network boot HOWTO Nvidia OpenGL Conf..OLSR IPv6 HOWTO Online Troubleshoo..Oracle 9i Fedora 3..PA RISC Linux Boot..PCTel MicroModem C..PHP Nuke HOWTO PPP HOWTO Pager PalmOS HOWTO Partition Partition Mass Sto..Partition Mass Sto..Partition Rescue Pine Exchange PortSlave Post Installation ..Postfix Cyrus Web ..Pre Installation C..Print2Win Printing HOWTO Process Accounting Program Library HO..Proxy ARP Subnet Qmail ClamAV HOWTO Qmail VMailMgr Cou..Querying libiptc H..RPM HOWTO Reading List HOWTO RedHat CD HOWTO Reliance HOWTO Remote Bridging Remote Serial Cons..SCSI 2.4 HOWTO SCSI Generic HOWTO SLIP PPP Emulator SRM HOWTO SSL Certificates H..Scanner HOWTO Scientific Computi..Scripting GUI TclTk Secure CVS Pserver Secure Programs HO..Security HOWTO Security Quickstar..Security Quickstar..Serial Laplink HOWTO Serial Programming..Slovak HOWTO Small Memory Smart Card HOWTO Software Proj Mgmt..Software Release P..Sound HOWTO Spam Filtering for..Speech Recognition..SquashFS HOWTO Sybase ASA HOWTO Sybase ASE HOWTO Sybase PHP Apache TCP Keepalive HOWTO Tamil Linux HOWTO TimePrecision HOWTO TimeSys Linux Inst..Token Ring Traffic Control HO..Traffic Control tc..UPS HOWTO Unix Hardware Buye..Unix and Internet ..Upgrade Usenet News HOWTO User Authenticatio..VB6 to Tcl VMS to Linux HOWTO VPN HOWTO Valgrind HOWTO VideoLAN HOWTO Vim HOWTO Virtual Web Webcam HOWTO WikiText HOWTO Windows Newsreader..Wireless Link sys ..Wireless Sync HOWTO XDM Xterm XDMCP HOWTO XFree Local multi ..XFree86 HOWTO XFree86 R200 XFree86 Second Mouse XFree86 Video Timi..XML RPC HOWTO XWindow Overview H..XWindow User HOWTO Xinerama HOWTO Xterminals Html single I810 HOWTO Libdc1394 HOWTO OpenMosix HOWTO Phhttpd HOWTO Ppp ssh Text

Next Previous Contents

12. Security concerns

The path is sometimes a big security problem. It is a very common way to hack into a system using some mistakes in path settings. It is easy to make Trojan horse attacks if hacker gets root or other users to execute his versions of commands. .:: hackmd.io ::. .:: www.coursera.org ::.

A common mistake in the past (?) was to keep '.' in the root's path. Malicious hacker makes program 'ls' in his home directory. If root makes .:: podcasts.apple.com ::.


# cd ~hacker
# ls

he executes ls command of hacker's.

Indirectly, this same applies to all the programs that are executed as root. Any of the important daemon processes should never execute anything that some other user can write into. In some systems, /usr/local/bin is allowed to contain programs with less strict security screening - it is just removed from the path of the root user. However, if it is known that some daemon executes 'foo' using path '/usr/local/bin/:...', it may be possible to cheat daemon to execute '/usr/local/bin/foo' instead of '/bin/foo'. Likely anybody who can write to '/usr/local/bin' is able to break into the system. [Functional programming Repositories] .:: phanchautrinh.edu.vn ::.

It is very important to consider in what order the directories are in the path. If /usr/local/bin is before /bin, it is a security risk - if it is after, it is not possible to overwrite command /bin/foo with some localized modification in /usr/local/bin/foo.

In Linux it should be remembered that the path evaluation is done in the operating system call level. Everywhere where an executable file path is given you can give a short name that is searched at least from /bin and /usr/bin - likely from many other places as well. [Scientific Data: Spring Framework] .:: mangatoto.org ::.

Next Previous Contents