Add privileged_* security checks to assess scripts

Question

Add privileged_* security checks to assess scripts

GoogleCodeExporter opened this issue 8 years ago · comments

Google Code Exporter commented 8 years ago

Add privileged_* security checks to assess scripts:
* Check for straight OS command injections
* Check for race condition bugs (e.g. symlink attack)
* ...

Original issue reported on code.google.com by bernardo.damele on 1 Nov 2012 at 1:07

Google Code Exporter · Answer 1 · Tue Apr 26 2016 15:15:24 GMT+0800 (China Standard Time)

Original comment by bernardo.damele on 5 Nov 2012 at 10:26

Changed state: Started

Google Code Exporter · Answer 2 · Tue Apr 26 2016 15:15:25 GMT+0800 (China Standard Time)

r329 is relevant.

Original comment by bernardo.damele on 5 Nov 2012 at 10:29

Google Code Exporter · Answer 3 · Tue Apr 26 2016 15:15:25 GMT+0800 (China Standard Time)

With regards to race conditions, r333 now also consider scripts.

Original comment by bernardo.damele on 5 Nov 2012 at 10:33

Google Code Exporter · Answer 4 · Tue Apr 26 2016 15:15:25 GMT+0800 (China Standard Time)

This issue was closed by revision r334.

Original comment by bernardo.damele on 5 Nov 2012 at 10:34

Changed state: Fixed