LISTSERV - HP3000-L Archives

HP3000-L Archives

April 1998, Week 2

HP3000-L@RAVEN.UTC.EDU

	LISTSERV Archives
	HP3000-L Home
	HP3000-L April 1998, Week 2

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: What capability is needed to run NETTOOL.NET.SYS?
From:	Mike Hornsby <[log in to unmask]>
Reply To:	Mike Hornsby <[log in to unmask]>
Date:	Wed, 8 Apr 1998 09:02:33 -0400
Content-Type:	text/plain
Parts/Attachments:	text/plain (59 lines)

A LINKEDIT LISTPROG is the best method to see a program s capabilities, and
external calls.

It also has an ALTPROG command. However: a program s capability requirements
come in two flavors. The first requirement is that the program is given
capabilities with LINKEDIT or SEGMENTER (ok, in SPL you can do an option
privileged) from a user that has those capabilities. Once the program has
the capabilities it only requires to be located in a group that has at least
those capabilities to load and execute.

The second flavor is capabilities that the program checks, usually with a
call to the WHO intrinsic. In this case a LISTPROG PING.NET.SYS does show
such a call. This is also a good way to see how dangerous a program is,
calls to GETPRIVMODE, and set_critical are clues that the program does
something <special>.

In this case, to get PING to work without checking user capabilities you
have several choices: First you could encapsulate the execution around a god
type program. I don t like this one because it creates a security hole.

The second method is to intercept the WHO intrinsic and supply the program
with the expected capability mask. The third method is to patch the PING
program to no op the logic around the WHO call.

A different question is, what is the reason or requirement for PING in the
first place? Perhaps there is a different method to check what you are
looking for?

[log in to unmask]




<SEVEN> PUB.SYS:version ping.net
VERSION  C.55.00 Copyright (C) Hewlett-Packard 1987.  All Rights Reserved.
PING.NET.SYS
SOM #1
$Header: nrt0.s,v 1.12 87/06/08 09:36:52 cary Exp $
dreg.nst.indhpe #Revision: 1.6 #
@(#)Remote Link Manager/ZE1MRLMN.INCLUDES/$Revision: 1.2 $
@(#)Remote Link Manager/ZEBMRLMN.INCLUDES/$Revision: 1.3 $
@(#)Remote Link Manager/ZE3MRLMN.INCLUDES/$Revision: 1.5 $
a0012/d/dstatus/lliomsg/$revision: 1.2.1.2 $
a0000/d/dtermctl/lliomsg/$revision: 1.1.3.4 $
A0000/D/DFARTBL /FILE OPEN       /$Revision: 1.1.7.2 $
A0000/D/DMACTBL /FILE OPEN       /$Revision: 1.5 $
A0100/d/diopm/hlio/$Revision: 1.4 $
A0003/D/DOBJCL/VSM/$Revision: 1.17.2.2 $
A0003/D/DVSM/VSM/$Revision: 1.10.2.2 $
@(#)NSXPORT  PING    B.05.09.000 SPUMNSTN $Revision: 1.3 $
@(#) apatch4 1.1
MAX STACK SIZE: 393216
MAX HEAP SIZE: 81920000
CAPABILITIES: BA,IA,PM,MR,DS,PH
UNSAT PROC NAME:
ENTRY NAME:
LIBRARY SEARCH LIST: NL.PUB.SYS
<SEVEN> PUB.SYS:

ATOM RSS1 RSS2

RAVEN.UTC.EDU