I like documentation. Programs should have it. But on the heels of the man path thing I did some more looking on my Snow Leopard System. Finding all the SUID files outside the traditional /sbin areas shows a few more (e.g. “find -x / -type f -perm -04000 -ls”.) Looks like 15 files, 8 of them by 3rd party vendors (good to know lazy coders are still out there): […]
Sometime, probably in the paleozoic era, I wrote a little perl script I just came across again. At the time I was frustrated by commands in /bin or /usr/bin not having documentation, even on a cleanly installed system… I guess I would think if something is important enough to install on a system you might want to tell your users what it does… so I thought I’d look at how […]
I keep having to look this up… so here’s a perl script (click to DL below). Also prints out some other stuff I keep forgetting how to get. Also does it for the user logged in, so you can sudo and have it work. Will die if you can’t read the hash file. Sample run: # ./get_hashpipe.pl Running Snow Leopard, version 10.6.8 You is: zen Gen UID for zen […]
Security in Bullet Time
I’ve been thinking of virtual systems and probing and prodding the same. Virtualizing is sort of sticking something in amber, but instead of being a dead or frozen system it’s a place you can run anything you want for as long as you want, it’s alive; and it can be exactly like a target you want to hit, analyze, tear apart. To me in the virtual flytrap world things […]