Home | Community | Message Board


Shroom Supply
Please support our sponsors.

General Interest >> Science and Technology

Welcome to the Shroomery Message Board! You are experiencing a small sample of what the site has to offer. Please login or register to post messages and view our exclusive members-only content. You'll gain access to additional forums, file attachments, board customizations, encrypted private messages, and much more!

Jump to first unread post. Pages: 1
OfflineDemon
A Drug AgainstWar

Registered: 06/19/00
Posts: 457
Loc: j00/2 m07h3/2
Last seen: 13 years, 5 months
The Hacker Deliemma
    #659903 - 06/03/02 05:19 AM (15 years, 2 months ago)

Recently, I found a security hole in my Mandrake Linux computer. I told one of my friends, who has Red Hat Linux on one of his computers, and he also had the same hole. The question is, should I tell people about it, and help the UNIX world, or should I keep it a secret and use it only on people who deserve to have it used against them? This is what I call the "hacker deleimma" ; do you tell people about security holes, or keep them a secret.
Personally I don't normally use my computer knowladge to do anything "Wrong", unless the victim deserves it, like for example, if they have tried to break in my computer, or the computers of other people and internet-based companies that are private.
For this post, when I say "hacker", I mean a person with great computer-related skill, and not nessacarily somone who tries to break into others' computers.


--------------------
"Sex is like a gun.. you aim, you shoot, you run" - Aerosmith

Come visit SacredShrooms.org!


Post Extras: Print Post  Remind Me! Notify Moderator
OfflineBarbi
Plastic Person

Registered: 04/22/02
Posts: 12,976
Last seen: 12 years, 9 months
Re: The Hacker Deliemma [Re: Demon]
    #659912 - 06/03/02 05:28 AM (15 years, 2 months ago)

Edited by mndfreeze


Post Extras: Print Post  Remind Me! Notify Moderator
OfflineDemon
A Drug AgainstWar

Registered: 06/19/00
Posts: 457
Loc: j00/2 m07h3/2
Last seen: 13 years, 5 months
Re: The Hacker Deliemma [Re: Barbi]
    #659949 - 06/03/02 06:05 AM (15 years, 2 months ago)

THe problem is that gcc is on my system, letting any user output their compiled program to any directory they wish, even ones that they don't have permission to write. For example, I could create an account and log in, and then use gcc to compile code to the output point /root/ .


--------------------
"Sex is like a gun.. you aim, you shoot, you run" - Aerosmith

Come visit SacredShrooms.org!


Post Extras: Print Post  Remind Me! Notify Moderator
OfflinePlanet PHL
non conformist
 User Gallery

Registered: 04/13/99
Posts: 541
Last seen: 7 years, 8 months
Re: The Hacker Deliemma [Re: Demon]
    #660733 - 06/03/02 03:29 PM (15 years, 2 months ago)

You're a hacker now? Not really the impression i got after talking to you about computers heh.
Anyway, are you able to overwrite other files you don't have access to? If not its not much of a security breach. You execuing it won't do anything your account doesnt have rights to, and its unlikely an admin would execute it for you. Such 'breaches' are nothing new though, i wouldnt run to the security community with too much attitude about this. It mostly means the default setups for redhat/mandrake arent very secure, which is nothing new to anyone familiar with linux.

Peace, phloid


Post Extras: Print Post  Remind Me! Notify Moderator
OfflineDemon
A Drug AgainstWar

Registered: 06/19/00
Posts: 457
Loc: j00/2 m07h3/2
Last seen: 13 years, 5 months
Re: The Hacker Deliemma [Re: Planet PHL]
    #663632 - 06/05/02 06:47 AM (15 years, 2 months ago)

Heh, you'd be surprised PHL. It's like that saying, I can't remember what it is exactly, but it's something about how it's better to not give away your smarts.
Nah, I'm not that skilled but I do like computer security a lot. That' s why I'm learning to be a UNIX system admin


--------------------
"Sex is like a gun.. you aim, you shoot, you run" - Aerosmith

Come visit SacredShrooms.org!


Post Extras: Print Post  Remind Me! Notify Moderator
OfflineMacey Howard
Formally MOE HOWARD
Female

Registered: 07/03/99
Posts: 14,165
Loc: Georgia
Last seen: 11 months, 14 days
Post deleted by Moe Howard [Re: Barbi]
    #665255 - 06/06/02 05:43 AM (15 years, 2 months ago)



--------------------
Hugs and Kisses!


Post Extras: Print Post  Remind Me! Notify Moderator
OfflineDemon
A Drug AgainstWar

Registered: 06/19/00
Posts: 457
Loc: j00/2 m07h3/2
Last seen: 13 years, 5 months
Re: The Hacker Deliemma [Re: Macey Howard]
    #665282 - 06/06/02 06:00 AM (15 years, 2 months ago)

I don't have a job
I'm a loser.


--------------------
"Sex is like a gun.. you aim, you shoot, you run" - Aerosmith

Come visit SacredShrooms.org!


Post Extras: Print Post  Remind Me! Notify Moderator
Invisibletak_old
Endo Smoke

Registered: 05/31/02
Posts: 609
Loc: State of confusion
Re: The Hacker Deliemma [Re: Demon]
    #714670 - 07/01/02 12:46 AM (15 years, 1 month ago)

This sounds like anti.sec I think Disclosure/Anti Disclosure is better wording than "The hacker diliemma" :P And a mandrake/redhat exploit from someone who is 'learning to be a sysadmin' is probably already found. Not to mention thats its more than likely not a anything that needs code for. gcc file.c -o /root/file ?? :P Try testing it when you ARNT root ;]


Post Extras: Print Post  Remind Me! Notify Moderator
Jump to top. Pages: 1

General Interest >> Science and Technology

Similar ThreadsPosterViewsRepliesLast post
* hackers steal $45mil in credit card details from TJ Maxx - "Largest credit card heist in history" kotik 849 5 03/31/07 04:02 PM
by delta9
* Calling all hackers
( 1 2 all )
Brainiac 2,835 26 05/18/08 02:28 AM
by purity
* Law that proposes jailing hackers for life passes LanaM 763 1 11/16/02 08:46 AM
by LoverofEarth
* hackers target VerChip... and succeed! kotik 1,127 8 07/27/06 01:34 PM
by kotik
* Old hacker tech RadioActiveSlug 1,687 16 06/19/03 05:12 PM
by Anonymous
* Hackers, come test your abilites. daba 1,103 17 05/21/04 07:03 PM
by aje
* A TV Plea to Patriot Hackers LanaM 1,004 2 09/30/01 03:52 PM
by Lana
* USA Patriot Act on Network Security Practice LanaM 1,290 1 11/28/01 12:08 AM
by Ishmael

Extra information
You cannot start new topics / You cannot reply to topics
HTML is disabled / BBCode is enabled
Moderator: Lana, trendal, automan
1,359 topic views. 0 members, 3 guests and 1 web crawlers are browsing this forum.
[ Toggle Favorite | Print Topic | Stats ]
Search this thread:
MushroomCube.com
Please support our sponsors.

Copyright 1997-2017 Mind Media. Some rights reserved.

Generated in 0.028 seconds spending 0.006 seconds on 19 queries.