Add privileged_* security checks to assess scripts

Question

Add privileged_* security checks to assess scripts

GoogleCodeExporter opened this issue 10 years ago · 4 comments

GoogleCodeExporter commented 10 years ago

Add privileged_* security checks to assess scripts:
* Check for straight OS command injections
* Check for race condition bugs (e.g. symlink attack)
* ...

Original issue reported on code.google.com by bernardo.damele on 1 Nov 2012 at 1:07

Answer 1 · 2015-03-22T13:39:16.000Z

Original comment by bernardo.damele on 5 Nov 2012 at 10:26

Changed state: Started

Answer 2 · 2015-03-22T13:39:16.000Z

r329 is relevant.

Original comment by bernardo.damele on 5 Nov 2012 at 10:29

Answer 3 · 2015-03-22T13:39:16.000Z

With regards to race conditions, r333 now also consider scripts.

Original comment by bernardo.damele on 5 Nov 2012 at 10:33

Answer 4 · 2015-03-22T13:39:16.000Z

This issue was closed by revision r334.

Original comment by bernardo.damele on 5 Nov 2012 at 10:34

Changed state: Fixed