Linux Magazine: Unix Security Holes | Linux Today

Linux Magazine: Unix Security Holes

Written By
Web Webster
Web Webster
Jul 15, 2000

“The hottest trend these days in network intrusion is to
exploit buffer overruns
, a technique where-by you feed a
program more data than it has allocated, overwriting the memory in
the hope of making the program do something it would normally never
do. It’s an interesting technique but just one of many available in
the arsenal of today’s intruders. In the interest of feeding
the media blitz about Internet security, this month’s column
features a walk through some of the more innovative and interesting
security holes that we’ve come across in the past few
years.”

“LD_PRELOAD on setuid Binaries… LD_PRELOAD Through Telnet…
Sun’s /dev/audio Bug… chfn CR Bug… ps Solaris /tmp Permissions
Bug… SGI colorview Bug…”

“So what have we learned from all of this? Well, if there’s one
thing that our brief jaunt through Unix history has taught us, it’s
that we should very carefully scrutinize any program that runs with
special privileges. And as the /dev/audio bug demonstrates, even if
you think you know everything about security, something else is
waiting just around the corner.”

Complete
Story

Web Webster

Web Webster

Web Webster has more than 20 years of writing and editorial experience in the tech sector. He’s written and edited news, demand generation, user-focused, and thought leadership content for business software solutions, consumer tech, and Linux Today, he edits and writes for a portfolio of tech industry news and analysis websites including webopedia.com, and DatabaseJournal.com.

Linux Today Logo

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.