Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Attacking Potential of sh-scripts
Special Forums Cybersecurity Attacking Potential of sh-scripts Post 302508617 by Perderabo on Monday 28th of March 2011 02:13:30 PM
Old 03-28-2011
It's not clear to me which executables are available for use in the shell script. A shell script will need the interpreter or it's inert. Can the script use standard utilities like chmod or sed? Can it invoke subsidiary languages like awk, or perl? A language can perl can do almost everything that can be done with an executable.

Must the cracker actually damage anything? Lots of crackers simply want a copy of your data and avoid damaging stuff to avoid detection. But in your scenario a cracker like that is tolerable?

----edit----
Also what about shared libraries? Are they signed as well?
 

3 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Potential new user of Unix

Hi all, Complete and utter virgin Unix person here (I don't even have the OS yet) As I'm doing a "looking into it" kinda thing before I move from MS I hope my questions are not inappropriate. 1. Should I get some kind off anti virus software. I know Unix is pretty good for not getting them... (2 Replies)
Discussion started by: dhula
2 Replies

2. AIX

how to handle potential file contention

I need to change how a posting procedure currently works in order to improve load balancing but I am hitting a potential file contention problem that I was wondering if someone here could assist me with... In a directory called FilePool I would have a bunch of files that are constantly coming in... (3 Replies)
Discussion started by: philplasma
3 Replies

3. HP-UX

Potential file system contention on directory

We have an 8-processor Itanium system running HP-UX 11.23 connected to shared SAN discs. We have an application that creates files (about 10) in a specific directory. When the application terminates, these files are removed (unlink) and a few others are updated. The directory contains... (8 Replies)
Discussion started by: FDesrochers
8 Replies

LEARN ABOUT PLAN9

mac

mac(1)								   User Commands							    mac(1)

NAME

       mac - calculate message authentication codes of the input

SYNOPSIS

       /usr/bin/mac -l | [-v] -a algorithm [-k keyfile] [file...]

DESCRIPTION

       The mac utility calculates the message authentication code (MAC) of the given file or files or stdin using the algorithm specified.

       If more than one file is given, each line of output is the MAC of a single file.

OPTIONS

       The following options are supported:

       -a algorithm    Specifies  the name of the algorithm to use during the encryption or decryption process. See USAGE, Algorithms for details.
		       Note: Algorithms for producing general length MACs are not supported.

       -k keyfile      Specifies the file containing the key value for the encryption algorithm. Each algorithm has specific key material require-
		       ments,  as  stated  in  the  PKCS#11  specification.  If  -k  is  not  specified,  mac prompts for  key material using get-
		       passphrase(3C).

		       For information on generating a key file, see dd(1M) or System Administration Guide: Security Services.

       -l	       Displays the list of algorithms available on the system. This list can change depending on the configuration of the crypto-
		       graphic framework. The keysizes are displayed in bits.

       -v	       Provides verbose information.

USAGE

   Algorithms
       The  supported  algorithms  are	displayed with the -l option. These algorithms are provided by the cryptographic framework. Each supported
       algorithm is an alias to the most commonly used and least restricted version of a particular algorithm type. For example,  md5_hmac  is	an
       alias to CKM_MD5_HMAC.

       These aliases are used with the -a option and are case-sensitive.

   Passphrase
       When the -k option is not used during encryption and decryption tasks, the user is prompted for a passphrase. The passphrase is manipulated
       into a more secure key using the PBKDF2 algorithm specified in PKCS #5.

EXAMPLES

       Example 1: Listing available algorithms

       example$ mac -l
       Algorithm       Keysize:  Min   Max
       -----------------------------------
       des_mac			  64	64
       sha1_hmac		   8   512
       md5_hmac 		   8   512

       Example 2: Getting the message authentication code for a file

       example$ mac -v -k mykey -a sha1_hmac /export/foo
       sha1_hmac (/export/foo) = 913ced311df10f1708d9848641ca8992f4718057

EXIT STATUS

       The following exit values are returned:

       0	Successful completion.

       >0	An error occurred.

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWcsu			   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |Evolving			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       digest(1), dd(1M), getpassphrase(3C), libpkcs11(3LIB), attributes(5), pkcs11_softtoken(5)

       System Administration Guide: Security Services

       RSA PKCS#11 v2.11 http://www.rsasecurity.com/rsalabs/pkcs/pkcs-11

       RSA PKCS#5 v2.0 http://www.rsasecurity.com/rsalabs/pkcs/pkcs-5

SunOS 5.10							    23 Apr 2004 							    mac(1)
All times are GMT -4. The time now is 05:51 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy