Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Anybody want to talk about Dirty Cow?
The Lounge What is on Your Mind? Anybody want to talk about Dirty Cow? Post 302984409 by wisecracker on Tuesday 25th of October 2016 03:49:40 PM
Old 10-25-2016
The thing is that according to RedHat the attacker has to be a local user, which implies that you know the local user, with unprivileged access. It does not say whether that user is allowed to execute code loaded from an external source, e.g. USB memory stick...
As I am not a professional I must assume that standard users are NOT allowed only admin' staff.

CVE-2016-5195 - Red Hat Customer Portal

However, and to me this is a big however, the Rowhammer _bug_ is much more serious as it can be buried inside a """free""" app' that could be DLed from so-called reputable sources and be stealthily called or installed inside what looks like a _cool_ app'. NASTY!

As we all know race conditions occur all the time in both HW and/or SW.
I had the condition(s) on both the AMIGA1200 and PC parallel ports when accessing HW I built many years ago so I am aware of situations like this. Obviously these were not OS crippling events but they taught me a lot and to research more about the situation.

Current technology is frighteningly quick compared to those units of yesteryear so even nanoseconds can be the breakpoint of today's HW...

I can't find any test code for Rowhammer though to see how it works... ;o(

...But I could guess though and probably be close enough without any said test code.
 

7 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Quick-and-dirty g++ compilation

I am creating a small bash file that will take one argument and compile it: #!/bin/bash OUT=${$1%.cpp} # C++ source files always end in .cpp g++ -Wall $1 -o $OUT chmod 777 $OUT The error message says 'bad substitution', namely where OUT is defined. How to fix this? (1 Reply)
Discussion started by: figaro
1 Replies

2. AIX

Can't mount showing 0506-342 The superblock on /dev/fslv00 is dirty

Dear All Last day in Aix 5.2 server by executing # df –g I found following: Filesystem GB blocks Free %Used Iused %Iused Mounted on . . /dev/fslv00 58.00 136.70 -135% 212103 1% /sprod After shutting down by following command # shutdown –h And when... (1 Reply)
Discussion started by: xa52000
1 Replies

3. UNIX for Advanced & Expert Users

Finding volumes with mirrored DRL(Dirty Region Log)

hi, How do I find VxVM volumes which have a mirrored DRL. thanks in advance Prasi (2 Replies)
Discussion started by: prasi_in
2 Replies

4. Shell Programming and Scripting

noob question - is awk the tool to clean dirty text files?

Hi, nevermind. I think I've found the answer. It appears I was looking for index, match, sub, and gsub. I want to write a shell script that will clean the html out of a bunch of files and format the data for import into excel. Awk seems like a powerful tool, but it seems oriented to... (1 Reply)
Discussion started by: yogert909
1 Replies

5. Shell Programming and Scripting

Need a quick and dirty solution

I have a list of multiple versions of software. The list is formated as follows: NAME VERSION I simply need to pull out the highest version of each software, for example: Original File a v1.0 a v1.1 a v1.2 b v2.1 b v2.2 b v2.21 b v3.0 Output a v1.2 b v3.0 (13 Replies)
Discussion started by: Finja
13 Replies

6. UNIX for Advanced & Expert Users

Superblock marked dirty

Good morning! I met a problem on a FS with AIX 5.3 It's not possible to mount the FS because of a dirty superblock. I tried few things without success. I need your help to solve my problem guys. Do you have any idea please? Thanks a lot drp01,/home/root # mount /GSPRES/data Replaying... (9 Replies)
Discussion started by: Castelior
9 Replies

7. Linux

Broadcom under Fedora 18 (Spherical Cow)

So I'm having a problem getting a Broadcom BCM4312 wireless controller to work under the broadcom-wl module $uname Linux 3.8.11-200.fc18.x86_64 #1 SMP Wed May 1 19:44:27 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux lspci -v 05:00.0 Network controller: Broadcom Corporation BCM4312 802.11b/g... (2 Replies)
Discussion started by: Skrynesaver
2 Replies

LEARN ABOUT REDHAT

pam_console

pam_console(8)						   System Administrator's Manual					    pam_console(8)

NAME

       pam_console - control permissions for users at the system console

SYNOPSIS

       session optional /lib/security/pam_console.so
       auth required /lib/security/pam_console.so

DESCRIPTION

       pam_console.so  is  designed to give users at the physical console (virtual terminals and local xdm-managed X sessions by default, but that
       is configurable) capabilities that they would not otherwise have, and to take those capabilities away when the are no longer logged  in	at
       the console.  It provides two main kinds of capabilities: file permissions and authentication.

       When a user logs in at the console and no other user is currently logged in at the console, pam_console.so will change permissions and own-
       ership of files as described in the file /etc/security/console.perms.  That user may then log in on other  terminals  that  are	considered
       part  of the console, and as long as the user is still logged in at any one of those terminals, that user will own those devices.  When the
       user logs out of the last terminal, the console may be taken by the next user to log in.  Other users who have logged  in  at  the  console
       during  the  time  that the first user was logged in will not be given ownership of the devices unless they log in on one of the terminals;
       having done so on any one terminal, the next user will own those devices until he or she has logged out of every terminal that is  part	of
       the  physical  console.	Then the race can start for the next user.  In practice, this is not a problem; the physical console is not gener-
       ally in use by many people at the same time, and pam_console.so just tries to do the right thing in weird cases.

ARGUMENTS

       debug  turns on debugging

       allow_nonroot_tty
	      gain console locks and change permissions even if the TTY's owner is not root.

       permsfile=filename
	      tells pam_console.so to get its permissions database from a different file than /etc/security/console.perms

       fstab=filename
	      tells pam_console.so to read the table of configured filesystems from a file other than /etc/fstab when  scanning  permsfile.   This
	      file is used to map directories to device names.

FILES

       /var/run/console.lock
       /var/run/console/
       /etc/security/console.apps
       /etc/security/console.perms

SEE ALSO

       console.perms(5)
       console.apps(5)
       /usr/doc/pam*/html/index.html pam_console_apply(8)
       /usr/doc/pam*/html/index.html

BUGS

       Let's hope not, but if you find any, please report them via the "Bug Track" link at http://bugzilla.redhat.com/bugzilla/

AUTHOR

       Michael K. Johnson <johnsonm@redhat.com>

Red Hat 							     2000/7/11							    pam_console(8)
All times are GMT -4. The time now is 04:34 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy