Faculty of Engineering and Mathematical Sciences 
Not logged in (login)

help4407


This forum is provided to promote discussion amongst students enrolled in Open Source Tools and Scripting (CITS4407).

Assignment 2 and Clarifications.
 
Options:
RSS cloud
Jump to:

Lecture recording on may 14

1 of 390 articles shown, currently no other people reading this forum.
photo
From: Lee dB.
Date: Fri 22nd May, 1:46pm
Actions: 
        Login-to-reply
"Christopher McDonald" <chris.                     wrote:

> "Lee de Byl"                               wrote:
> 
> > Interestingly, Examplify uses lots of small shell scripts on Mac to go through and disable services, 
> > change firewall rules and so forth, then (mostly) reverse the process. From a security perspective, 
> > it would be interesting to see if the integrity of these files is validated prior to execution, 
> > especially as I think they run with elevated privileges. I’d assume they would be. 
> 
> My early examination of some of it, was that it kept the checksums of those scripts in its binary - but then I 
> thought, if it was going down that path, why doesn't it keep the scripts in its binary, and then run them 
> dynamically?   Also, would leave less guff behind.

Ah, that's interesting. I had wondered if having the shell scripts as standalone files would also more easily permit some type of race condition exploit, where the contents of the files could be changed in between having their contents verified, and being executed?

 From a shell scripting perspective, it also got me thinking about the context these scripts are being run under, and if it could be possible to create aliases to innocuous "dummy" utilities that do nothing (or run with a modified path environment). From memory (I only looked at it briefly), the scripts don't even seem to take particular care to ensure that all commands execute successfully.

Still, it's interesting to see how they're put together in a piece of commercial software.

Related articles

Lecture recording on may 14 (all 6) RSS
├─ original   Thu 21st May, 6:54pm, Deepakraj S.
├─ reply 1   Fri 22nd May, 7:39am, Christopher M.
├─ reply 2   Fri 22nd May, 11:58am, Lee dB.
├─ reply 3   Fri 22nd May, 12:32pm, Christopher M.
├─ THIS   Fri 22nd May, 1:46pm, Lee dB.
└─ reply 5   Sun 24th May, 7:34am, Christopher M.
This Page


Program written by: [email protected]
Feedback welcome
Last modified:  8:27am May 24 2020