From mboxrd@z Thu Jan 1 00:00:00 1970 Mime-Version: 1.0 (Apple Message framework v753) In-Reply-To: <13426df10802220953q3af4a1aarf93acaaebfedc9b@mail.gmail.com> References: <13426df10802220953q3af4a1aarf93acaaebfedc9b@mail.gmail.com> Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Pietro Gagliardi Subject: Re: [9fans] a challenge Date: Fri, 22 Feb 2008 12:57:53 -0500 To: Fans of the OS Plan 9 from Bell Labs <9fans@cse.psu.edu> Topicbox-Message-UUID: 5ee1b0ba-ead3-11e9-9d60-3106f5b1d025 I don't have Linux, but I'll see if Mac OS X has that vulnerability. On Feb 22, 2008, at 12:53 PM, ron minnich wrote: > here is a challenge. I realize it's linux but I think this is the > right group to ask anyway; I think you'll appreciate the humor in it. > So far few I have talked to have gotten it. > > There is a file, called /bin/bash. > > You are allowed to do this as root. > cp this file to /tmp. Do something to it to make it so that, when you > are not root, you can run the file in /tmp and get a root shell. > > Don't assume the obvious. And please don't post "that's trivial" until > you have actually done it. > > ron