[OLPC Security] Bitfrost and dual-boot

Michael Stone michael at laptop.org
Thu May 29 18:03:22 EDT 2008


On Thu, May 29, 2008 at 05:53:49PM -0400, Michael Stone wrote:
> On Thu, May 29, 2008 at 02:58:07PM -0600, Jameson Chema Quinn wrote:
> In recent builds, any process running as user OLPC can execute code as
> uid 0 via the setuid-0 user-olpc-executable /usr/bin/sudo.

A small correction: in recent builds, /bin/su is 04550 root/wheel, user
olpc is a member of wheel, and /usr/bin/sudo is a thin wrapper around
/bin/su.

Michael


More information about the Security mailing list