[Arm-netbook] root hacked

JLB j at twu.net
Thu Feb 18 20:21:09 GMT 2010


Sweet! What was the backdoor? Adding midfun to sudoers?

On Thu, 18 Feb 2010, Oliver Kiddle wrote:

> /sbin/udevd is, for some reason, owned by midfun. It is executed as root from an init script.
>
> So as midfun, I swapped it for a shell script which adds a back door and then execs the original udevd with all arguments. Am now in as root.
>
> Oliver
>
>
>
>
> _______________________________________________
> Arm-netbook mailing list
> Arm-netbook at lists.phcomp.co.uk
> http://lists.phcomp.co.uk/mailman/listinfo/arm-netbook
>



More information about the Arm-netbook mailing list