|
Hi Trev,
I agree Unix is just great for "hacking" ....... I would really
like to know how that guy got su priv's on his shell without
being su to start with !!!!! Since I see you are interested
in rogue I wonder if you have seen/played the "new" advanced
rogue (5.3) that appears in the AT&T programmers toolchest.
Well if you have'nt you should ... it blows hack and all the
other rogue's I have played right out of the water!!! there
are 4 character classes that you can play ... fighter, thief,
magician, and cleric .... the latter 2 can cast spells/prayers
to do all sorts of interesting things ... and there are some
really interesting (some unique) monsters that can really waste
you 100 hit points at a time, its really great !!! I recommend
that you try and get a copy .... I dont see it mentioned in
the conference though, shame!
Regards
Larry Cable (IPG/Ultrix Reading)
|
| Naaah, hacking Unix is too easy... The system is set up in such a way that it
is too easy for a system manager to leave security holes all over the place.
(.0 is one example) I also got a root shell by accident once when I was in
college, it seems the system manager was hacking the shell to give it "setuid"
privileges so it could execute a shellscript with the "setuid" bit on with the
setuid privilege of the script, (kind of like being able to install a .COM file
on VMS with special privileges) but he forgot to turn off privileges so, for a
while, everyone was root! I spent most of that time playing ROGUE since I
didn't notice anything was funny, until a "ls" showed root owning my save game!
I made my own copy of the shell, gave it privileges and hid it away. That
didn't last long, since they went looking for privileged programs shortly
after.
As to rogue, MORIA blows all rogues I've seen out of the water, and it runs on
VMS, too. Look in the MORIA conference on JON for more info. (JON::MORIA)
KP7, SELECT, etc. as usual.
-Mike
|