[CentOS] an actual hacked machine, in a preserved state

John R Pierce pierce at hogranch.com
Tue Jan 3 09:35:13 UTC 2012

On 01/03/12 1:14 AM, Rudi Ahlers wrote:
> How does something like c99shell allow a local user (not root) to read
> the /etc/shadow file?

presumably it uses a suid utility?   i'm not familiar with c99shell, but 
thats classically how you elevate privileges.

john r pierce                            N 37, W 122
santa cruz ca                         mid-left coast

More information about the CentOS mailing list