Advanced Exercises


8.

On Mac OS X Server, the root account starts out with the same password as the first user account created. Why is this less of a security flaw than it might seem to be?

9.

Why are setuid shell scripts inherently unsafe?

10.

If you use launchctl to load a job when you do not have root privileges, a new copy of launchd is started. Why does Mac OS X not simply load your job into the copy of launchd that is already running as process 1?

11.

Some versions of Mac OS X contain a vulnerability that allows a local user to gain root privileges. Explain how this kind of vulnerability negates the value of a chroot jail.




A Practical Guide to UNIX[r] for Mac OS[r] X Users
A Practical Guide to UNIX for Mac OS X Users
ISBN: 0131863339
EAN: 2147483647
Year: 2005
Pages: 234

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net