Then again, I'm putting together a CTF vulnimage and it's definitely going to be systemd-based. Bonus if you pwn it that way!https://twitter.com/marsroverdriver/status/881550176384503808 …
-
If it relies on some really dumb setup like generating unit files from unprivileged user input, then there's many ways to abuse that
There are also many ways to get it right were it not for this systemd stupidity.
-
-
Is it stupid systemd behaviour? Yes, absolutely. Is it a security vulnerability on any real-world system? No.
-
There are *tons* of shared-hosting style services that rely on this kind of dynamic user account creation and might be using systemd.
End of conversation
New conversation -
-
-
I wonder how paranoid people will now be copy/pasting systemd scripts from stackoverflow. Just need one malicious person to ruin it
-
Something like replacing placing a User=nobody where nobody is actually made with one or two utf-8 lookalike chars.
- Show replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.