Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: C Brain Teaser
Top Forums Programming C Brain Teaser Post 302221139 by redoubtable on Sunday 3rd of August 2008 02:17:22 PM
Old 08-03-2008
There's a more complex way of doing it.

We could open (argv[0], O_RDONLY), then unlink(argv[0]), and then re-open open(argv[0], O_RDWR).

Like that, you could read the content of your program before it was unlinked ('cause the kernel still holds the reference upon unlink() if the file is open by any process) and write a new content after it was unlinked.

Now, from here you could go to very funny stuff like changing the ELF format on-the-fly (something like changing the .comment section) and then have something on your file that says "if the .comment section has a certain sha1 hash that matches whatever, the program should run, otherwise it won't run". Be aware that someone could strip the comment section very easily lol.

Another way would also be very funny like creating an assembly program that just makes your program exit, then, extracting the hex opcodes (machine-language) of that program using something like objdump and injecting those opcodes on your other program's main function. Of course you would have to know the right offset to mmap() to, etc. With this, you could actually alter the way that your program feeds back after the first execution, because you could also inject write()'s, etc. (a lot more work would be needed)
 

6 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Brain Bench Certification

Hi, Can anybody provide me Pointers to Practice tests or any Material to prepare for Brainbench certification in Unix Shell Scripting? Also how good is this Certification for UNIX programmers. Is it worth it? I'm planning to take this certification in 2 weeks. Kindly let me know all the pros... (0 Replies)
Discussion started by: pavan_emani
0 Replies

2. Shell Programming and Scripting

This might be a programming teaser!

Hi gurus, I have done my best to be as precisely as possible with this. Besides giving the format of file a and file b and the result file I have also given the algorithm as I have figured out. I will try to do this and I hope that some of you could help me to solve this or better yet... (1 Reply)
Discussion started by: ljankok
1 Replies

3. Programming

Brain Teaser Extended

Hi Gurus, To the Brain Teaser, if I add another condition, say the executable should not be altered, how the program should be altered? (no perl please, purely C). I forgot to mention this condition my staff had mentioned. ( forgot then and got now :D ) The program executed the first time... (4 Replies)
Discussion started by: vrk1219
4 Replies

4. What is on Your Mind?

The Human Brain project

A global group of scientists are spending the next ten years and a billion dollars to try and develop a computer simulation of the brain: https://www.humanbrainproject.eu/ I always found it fascinating that the brain can understand itself. This almost sounds like in a few years the computer... (0 Replies)
Discussion started by: figaro
0 Replies

5. Shell Programming and Scripting

sed regexp teaser

G'day, Here's a teaser for a sed guru, which I surely am not one, as even my basic sed skills are rusted from years of not practising ... lol Ok ... we have a string of digits such as: 632413741610252847552619172459483022433027602515212950543016701812771409213148672112 we want it split... (9 Replies)
Discussion started by: naderra
9 Replies

6. What is on Your Mind?

Cyber Dystopia Teaser (720 HD)

Working on a new cybersecurity, dystopian world series and made a short 2 min teaser today. Cyber Dystopia (720 HD) https://www.youtube.com/watch?v=g9Ca07J_YC8 If anyone has any ideas for the story, please write out some story lines in the comments and join the production team! (1 Reply)
Discussion started by: Neo
1 Replies

LEARN ABOUT OSF1

unlink

unlink(2)							System Calls Manual							 unlink(2)

NAME

       unlink - Removes a directory entry

SYNOPSIS

       #include <unistd.h>

       int unlink (	 const char *path );

STANDARDS

       Interfaces documented on this reference page conform to industry standards as follows:

       unlink():  XSH5.0

       Refer to the standards(5) reference page for more information about industry standards and associated tags.

PARAMETERS

       Specifies the directory entry to be removed.

DESCRIPTION

       When the directory entry is a hard link, the unlink() function removes it and decrements the link count of the file referenced by the link.
       When the directory entry is a symbolic link, the unlink() function removes the symbolic link and does not  affect  any  file  or  directory
       named by the contents of the symbolic link.

       When  all links to a file are removed and no process has the file open or mapped, all resources associated with the file are reclaimed, and
       the file is no longer accessible. If one or more processes have the file open or mapped when the last link is removed, the link is  removed
       before  the  unlink()  function returns, but the removal of the file contents is postponed until all open or map references to the file are
       removed.

       A hard link to a directory cannot be unlinked.

       A process must have write access to the parent directory of the file to be unlinked with respect to all access policies.

       Upon successful completion, the unlink() function marks for update the st_ctime and st_mtime fields of the directory  which  contained  the
       link.  If the file's link count is not 0 (zero), the st_ctime field of the file is also marked for update.

   System V Compatibility
       [Tru64  UNIX]  Any  attempt  to	unlink	non-empty  directories in the System V habitat will cause the unlink call to fail and set errno to
       ENOTEMPTY, even if the process has superuser privileges.  This error behavior is provided in the System V habitat to comply with the SVID-2
       industry standard.

RETURN VALUES

       Upon  successful  completion, a value of 0 (zero) is returned. If the unlink() function fails, a value of -1 is returned, the named file is
       not changed, and errno is set to indicate the error.

ERRORS

       If the unlink() function fails, the named file is not unlinked and errno may be set to one of the following values:  Search  permission	is
       denied  for  a component of the path prefix, or write permission is denied on the directory containing the link to be removed.  The S_ISVTX
       flag is set on the directory containing the file referred to by the path argument and the caller is not the file owner, nor is  the  caller
       the  directory owner, nor does the caller have appropriate priviliges.  The entry to be unlinked is the mount point for a mounted file sys-
       tem.  The file named by path is a named STREAM.	The path parameter is an invalid address.  Too many symbolic  links  were  encountered	in
       translating  path.  The length of the path parameter exceeds PATH_MAX or a pathname component is longer than NAME_MAX.  Pathname resolution
       of a symbolic link produced an intermediate result whose length exceeds PATH_MAX.  The named file does not  exist  or  the  path  parameter
       points to an empty string.  A component of the path prefix is not a directory.  The named file is a directory.

	      The  S_ISVTX flag is set on the directory containing the file referred to by the path argument and the caller is not the file owner,
	      nor is the caller the directory owner, nor does the caller have appropriate priviliges.  The entry to be unlinked is part of a read-
	      only  file  system.   The entry to be unlinked is the last directory entry to a pure procedure (shared text) file that is being exe-
	      cuted.

       [Tru64 UNIX]  For NFS file access, if the link() function fails, errno may also be set to one of the  following	values:  Indicates  either
       that  the  request was for a write access to a file but the specified filename was actually a directory, or that the function was trying to
       rename a directory as a file.  Indicates either that the system file table is full, or that there are too many files currently open in  the
       system.	Indicates a stale NFS file handle.  A client cannot delete a link because the server has unmounted or unexported the remote direc-
       tory; or the directory that contains an file was either unmounted or unexported by the server.

RELATED INFORMATION

       Commands: link(1), unlink(1), rm(1)

       Functions: close(2), link(2), open(2), rmdir(2)

       Standards: standards(5) delim off

																	 unlink(2)
All times are GMT -4. The time now is 08:27 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy