[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security stuff

To: mint@atari.archive.umich.edu
Subject: Re: Security stuff
From: Johan Klockars <rand@cd.chalmers.se>
Date: Thu, 11 Sep 1997 08:53:49 +0200 (MET DST)
In-reply-to: <Pine.LNX.3.96.970911054612.9182A-100000@nidus.mi.com.pl> from "Konrad M.Kokoszkiewicz" at Sep 11, 97 06:17:02 am

> We have at least three insecure system calls available for all users, i.e.
> Super(), Supexec() and Rwabs(). And perhaps some more :) If the Unix

Yes, there are more. I'm sure I've still forgotten about a few below and I
didn't even consider those that 'only' modify global system behaviour.

Calls that can give a program supervisor access (indirectly)
setexc   (bios 5)
_mfpint  (xbios 13)

Calls that can seriously disrupt the system
ikbdws   (xbios 25)
jdisint  (xbios 26)
jenabint (xbios 27)
xbtimer  (xbios 31)

I don't recall if the VDI vex_timv/butv/motv/curv call their vector routines
in supervisor mode, but they might.

-- 
  Chalmers University   | Why are these |  e-mail:   rand@cd.chalmers.se
     of Technology      |  .signatures  |            johan@rand.thn.htu.se
                        | so hard to do |  WWW/ftp:  rand.thn.htu.se
   Gothenburg, Sweden   |     well?     |            (MGIFv5, QLem, BAD MOOD)

Follow-Ups:
- Re: Security stuff
  - From: "Konrad M.Kokoszkiewicz" <draco@mi.com.pl>

References:
- Security stuff
  - From: "Konrad M.Kokoszkiewicz" <draco@mi.com.pl>

Prev by Date: Security stuff
Next by Date: Re: Security stuff
Previous by thread: Security stuff
Next by thread: Re: Security stuff
Index(es):
- Date
- Thread