Grex Scruples Conference

View Responses

Grex Scruples Item 113: y
Entered by ryan1 on Tue Jun 20 23:42:01 UTC 1995:

You find a hole in grex's security, and you can su to root, what do you do?
do you use your powers to mess everything up? or do you tell staff
about the hole?

8 responses total.

#1 of 8 by zook on Wed Jun 21 00:32:49 1995:

That's easy.  I tell the staff.  I do not make myself a root.

#2 of 8 by omni on Wed Jun 21 04:30:54 1995:

  Call someone from staff *on the phone* so that they can close the hole
as soon as possible. Otherwise, what zook said.

#3 of 8 by scg on Wed Jun 21 05:18:12 1995:

Tell staff, either on the phone or in mail, depending on how easy the hole
seems to be to find.  I generally don't go looking for such holes, so if I
found it it would have to be a pretty obvious one.

#4 of 8 by aruba on Thu Jun 22 02:05:47 1995:

Yupper, I'd tell someone.

#5 of 8 by popcorn on Thu Jun 22 13:29:18 1995:

This response has been erased.

#6 of 8 by canis on Thu Aug 17 05:52:59 1995:

I would probably e-mail staff while root... and explain how I found this 
hole.... then I'd probably forget it about it for awhile... I might use
it to kill off extra processes, naaa I wouldn't...

#7 of 8 by jazz on Thu Aug 17 06:09:12 1995:

 
        I'm a pernicious little sprite, and I'd definitely have to tweak 
someone's nose for a security hole like that ... though they're inevitable
in any UNIX system.  But abuse it?  Nah.

#8 of 8 by ewhisam on Thu Dec 28 04:05:19 1995:

Tell Grex

Response not possible - You must register and login before posting.