Google Git
Sign in
kernel/pub/scm/linux/kernel/git/kees/linux.git/refs/heads/nak/proc-r
commit
0183b4153d3093b31db48430b8907f7c5843ff12
[log] [tgz]
author
Paul Wise <pabs3@bonedaddy.net>
Sun Oct 12 13:05:34 2014 +0800
committer
Kees Cook <keescook@chromium.org>
Sun Oct 02 21:56:50 2016 -0700
tree
e03a1b0981705712143f295f31f5f1281a2803b4
parent
c8d2bc9bc39ebea8437fd974fdbc21847bb897a3 [diff]
sysctl: terminate strings also on \r

This partially mitigates a common strategy used by attackers for hiding
the full contents of strings in procfs from naive sysadmins who use cat,
more or sysctl to inspect the contents of strings in procfs.

References: http://www.jakoblell.com/blog/2014/05/07/hacking-contest-hiding-stuff-from-the-terminal/
Signed-off-by: Paul Wise <pabs3@bonedaddy.net>
Signed-off-by: Kees Cook <keescook@chromium.org>
1 file changed
tree: e03a1b0981705712143f295f31f5f1281a2803b4
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitignore
  26. .mailmap
  27. COPYING
  28. CREDITS
  29. Kbuild
  30. Kconfig
  31. MAINTAINERS
  32. Makefile
  33. README
  34. REPORTING-BUGS