[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [VULN 4/4] Process auth man-in-the-middle
|
From: |
Samuel Thibault |
|
Subject: |
Re: [VULN 4/4] Process auth man-in-the-middle |
|
Date: |
Fri, 5 Nov 2021 11:36:38 +0100 |
|
User-agent: |
NeoMutt/20170609 (1.8.3) |
William ML Leslie, le ven. 05 nov. 2021 21:18:50 +1100, a ecrit:
> I've been meaning to ask: Why does the hurd attempt to re-authenticate open
> file descriptors during exec?
That's done only when the auth port changes, i.e. uid/gid etc. following
a setuid/setgid/etc. trigger.
Samuel
- [VULN 0/4] Hurd vulnerability details, Sergey Bugaev, 2021/11/02
- [VULN 1/4] Fake notifications, Sergey Bugaev, 2021/11/02
- [VULN 3/4] setuid exec race, Sergey Bugaev, 2021/11/02
- [VULN 2/4] No read-only mappings, Sergey Bugaev, 2021/11/02
- [VULN 4/4] Process auth man-in-the-middle, Sergey Bugaev, 2021/11/02
- Re: [VULN 4/4] Process auth man-in-the-middle, William ML Leslie, 2021/11/05
- Re: [VULN 4/4] Process auth man-in-the-middle,
Samuel Thibault <=
- Re: [VULN 4/4] Process auth man-in-the-middle, Samuel Thibault, 2021/11/05
- Re: [VULN 4/4] Process auth man-in-the-middle, William ML Leslie, 2021/11/05
- Re: [VULN 4/4] Process auth man-in-the-middle, Sergey Bugaev, 2021/11/05
- Re: [VULN 4/4] Process auth man-in-the-middle, William ML Leslie, 2021/11/05
- Re: [VULN 4/4] Process auth man-in-the-middle, Sergey Bugaev, 2021/11/05
Re: [VULN 0/4] Hurd vulnerability details, Samuel Thibault, 2021/11/02