I'm getting one on a free upgrade on tmob UK this coming week so I'll have to investigate what's causing the priv escalation (seeing as most of the people in the linked article don't seem to have a clue.)
If you RTFA, ptelnetd is installed first by the user. This then somehow gains setuid privs without the setuid bit being set (as someone else commented, perhaps `login` does).
It was most likely modded down..well, say, I don't know..maybe because it was a rant about Gentoo advocates in reply to a review of a book about RSS syndication? No? Maybe it's just me then..
When the Yahoo! switch was happening, Yahoo! posted rather detailed notes and presentations of exactly how they were using PHP to generate and display their content. Don't have a link handy right now though.
Slashdot Mirror
I'm getting one on a free upgrade on tmob UK this coming week so I'll have to investigate what's causing the priv escalation (seeing as most of the people in the linked article don't seem to have a clue.)
Indeed.
I stand corrected (and sometimes with the help of a stick.)
However if telnetd is running something owned by root with setuid....
If you RTFA, ptelnetd is installed first by the user. This then somehow gains setuid privs without the setuid bit being set (as someone else commented, perhaps `login` does).
As the AC said, iron.
As a webdev that reads Slashdot I'm able to see that every single bloody mention of Chrome says it uses webkit.
WTF MAN...yeesh.
How did you seriously *not* know this?
Karma milking.
Damn, now you're making me wish I'd done the same Jonty.
It was most likely modded down..well, say, I don't know..maybe because it was a rant about Gentoo advocates in reply to a review of a book about RSS syndication?
No? Maybe it's just me then..
That's the one.
When the Yahoo! switch was happening, Yahoo! posted rather detailed notes and presentations of exactly how they were using PHP to generate and display their content. Don't have a link handy right now though.