From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org
X-Spam-Level: 
X-Spam-Status: No, score=-0.8 required=5.0 tests=DKIM_INVALID,DKIM_SIGNED,
	MAILING_LIST_MULTI,T_SCC_BODY_TEXT_LINE autolearn=ham
	autolearn_force=no version=3.4.4
Received: (qmail 2244 invoked from network); 1 Aug 2023 21:11:35 -0000
Received: from minnie.tuhs.org (2600:3c01:e000:146::1)
  by inbox.vuxu.org with ESMTPUTF8; 1 Aug 2023 21:11:35 -0000
Received: from minnie.tuhs.org (localhost [IPv6:::1])
	by minnie.tuhs.org (Postfix) with ESMTP id 4AE224106B;
	Wed,  2 Aug 2023 07:11:31 +1000 (AEST)
Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20])
	by minnie.tuhs.org (Postfix) with ESMTPS id A7EDA41064
	for <tuhs@tuhs.org>; Wed,  2 Aug 2023 07:11:26 +1000 (AEST)
Received: from compute2.internal (compute2.nyi.internal [10.202.2.46])
	by mailout.west.internal (Postfix) with ESMTP id A144B3200905
	for <tuhs@tuhs.org>; Tue,  1 Aug 2023 17:11:25 -0400 (EDT)
Received: from mailfrontend2 ([10.202.2.163])
  by compute2.internal (MEProxy); Tue, 01 Aug 2023 17:11:25 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ronnatalie.com;
	 h=cc:content-transfer-encoding:content-type:content-type:date
	:date:from:from:in-reply-to:in-reply-to:message-id:mime-version
	:references:reply-to:reply-to:sender:subject:subject:to:to; s=
	fm2; t=1690924285; x=1691010685; bh=UyuAB0nbHooFZRmyf2BqktbuZX5N
	0r5ZD4+QvSjkirg=; b=uk2S7MO5+whCO4vvab5hFRB2CPE/VsW2HxpRVoRwFENi
	4MT0j3Lh3uEwQATUSYuBdchig1fDxiLLJQOALFYXmA7oh/J/9Qe8GgzwaawjzXUQ
	Rg4RO4AiEg3+EKE8qSUNiCN1zCCmATxJFs1NnPoXhWya4PNCsVUYZpsmOaLkXs7y
	sTOueFeNF9DslL7BoWRz8qnVkpE75b5/az1le8liue/ypzf5LoiIP4XmotI+SX5M
	bPFzrsZ1c4B46KcJPYKP5y2cxsYBj5vgaPwsljnGZPqNYJVPPSH2qASXivMKkazc
	JVAgoiI+ynBZZXHVMUhr7mwMPjR3n+UN7df6vokTKg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
	messagingengine.com; h=cc:content-transfer-encoding:content-type
	:content-type:date:date:feedback-id:feedback-id:from:from
	:in-reply-to:in-reply-to:message-id:mime-version:references
	:reply-to:reply-to:sender:subject:subject:to:to:x-me-proxy
	:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t=
	1690924285; x=1691010685; bh=UyuAB0nbHooFZRmyf2BqktbuZX5N0r5ZD4+
	QvSjkirg=; b=NKeAlPWOsuLxsCnihZexy0GZZRxe8vF0V33s3Uia5FVnTEjLaJ2
	rMoLzi8neWwhO2TSWD01XtAoFx6x3Sjrqw4qs25lC6Ma0oIGXJaxYyYQ6nHKtWY4
	NC3/8RmI+LgHWl4tYNLS33Ao/oH13hn+4/KjQpOqJQOAQ7PN1+Gr+mBKl213rdS5
	wNkgRLXFPl9xnO8CREb6P69xTVJoTkbPtayekiuwaTNhdfBVRqQsBUnvELvF0fGV
	ioZab7O0wPcQwxcnijWGSNUTQG6VlWZlbbHgpYwdg/rAlAwIHN+zCFUSJ/jezjVp
	B+qbUqN4/9m6TxZQ+g9rRK3pWKFA+vYFvPw==
X-ME-Sender: <xms:_HTJZKoqF4nr1QNPa4V33to_Hs-TFBGDqC9dFR-6ymwHRDX9DI7iug>
    <xme:_HTJZIoC4DfGgElXg7eob2jAdVGBob6Iiud7qHtfvhMyWdCrwsNEA5CuJvEKgvvRS
    3oBmVxNC_oNrCtOff4>
X-ME-Received: <xmr:_HTJZPNoQQf-au_dYgb-sg3bsn7jk4DxiUOrDxz-p6pxt5rm0a2FyND70GMKy1tpFM7H>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedviedrjeeigdduheehucetufdoteggodetrfdotf
    fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen
    uceurghilhhouhhtmecufedttdenucenucfjughrpefhvffufffkjghfrhgfgggtgfesth
    hqredttderjeenucfhrhhomhepfdftohhnucfprghtrghlihgvfdcuoehrohhnsehrohhn
    nhgrthgrlhhivgdrtghomheqnecuggftrfgrthhtvghrnhepffduteevteffueethfelle
    dvtdefhfekhfdvgfehudejveeijeekvddvtdejveegnecuvehluhhsthgvrhfuihiivgep
    tdenucfrrghrrghmpehmrghilhhfrhhomheprhhonhesrhhonhhnrghtrghlihgvrdgtoh
    hm
X-ME-Proxy: <xmx:_XTJZJ5tC5p7t5Gmlg5qHDDxPRIuZvzMjlQPbzqg_sNOR4StRiU8BQ>
    <xmx:_XTJZJ5kRSnCpBeJ5AyqLzcudzsey4DfmpcwdSVtAvf41HkWUfqGxQ>
    <xmx:_XTJZJhngDE7s2VfqOk90Bi9Gs4679ankmg4fNDnRZmsWur_zQlIXQ>
    <xmx:_XTJZKU8KtljMqOFHcG48Uzz1HL9rH_1WR2HxGOej-E_kMX-c9rVbA>
Feedback-ID: iaba146ad:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <tuhs@tuhs.org>;
 Tue, 1 Aug 2023 17:11:24 -0400 (EDT)
From: "Ron Natalie" <ron@ronnatalie.com>
To: "The Eunuchs Hysterical Society" <tuhs@tuhs.org>
Date: Tue, 01 Aug 2023 21:11:24 +0000
Message-Id: <em4ad243a6-02bf-4d7e-924a-3fe4a00e2c06@a70c2ae8.com>
In-Reply-To: <20230801204800.wvlfp%steffen@sdaoden.eu>
References: <CAP6exYJZv=tThsACn3sRvV0HXRYG_GLuUtWkxVk_n5XhuN1UpA@mail.gmail.com>
 <CAA1C+h3DVGd_BZB=0eaQrvnJrOdf91c3Ey_N+KwwgJ8oKQQ3Yw@mail.gmail.com>
 <CAP6exYLpMdPHvj0VuY+qm_S3x9fY0hhf3SantTf-+QHCRZCA-w@mail.gmail.com>
 <ema20a2ab4-d44e-4b1c-8e7e-079960bdd910@a70c2ae8.com>
 <CAK6BEgegH3TeE4ETM489s70jV4xDFzEJF1EV7u2QPkHEr4pCFA@mail.gmail.com>
 <20230801204800.wvlfp%steffen@sdaoden.eu>
User-Agent: eM_Client/9.2.1841.0
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: quoted-printable
Message-ID-Hash: Z7MGNNPKBXZUTVSERB6GYACST7LI5LMO
X-Message-ID-Hash: Z7MGNNPKBXZUTVSERB6GYACST7LI5LMO
X-MailFrom: ron@ronnatalie.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.6b1
Precedence: list
Reply-To: Ron Natalie <ron@ronnatalie.com>
Subject: [TUHS] Re: shell escapes in utilities
List-Id: The Unix Heritage Society mailing list <tuhs.tuhs.org>
Archived-At: <https://www.tuhs.org/mailman3/hyperkitty/list/tuhs@tuhs.org/message/Z7MGNNPKBXZUTVSERB6GYACST7LI5LMO/>
List-Archive: <https://www.tuhs.org/mailman3/hyperkitty/list/tuhs@tuhs.org/>
List-Help: <mailto:tuhs-request@tuhs.org?subject=help>
List-Owner: <mailto:tuhs-owner@tuhs.org>
List-Post: <mailto:tuhs@tuhs.org>
List-Subscribe: <mailto:tuhs-join@tuhs.org>
List-Unsubscribe: <mailto:tuhs-leave@tuhs.org>

Even without shell escapes there are fun and cames with abusing setuid=20
(but accessible) programs.
Things like opening all the available file descriptors, closing=20
stdin/out/err before invocation, doing things to overrun buffers, etc=E2=80=
=A6