Multiple security issues in GNU Screen

(www.openwall.com)

414 points st_goliath | 1 comments | 13 May 25 11:28 UTC | HN request time: 0.267s | source

Show context

RMPR ◴[13 May 25 11:51 UTC] No.43971862[source]▶

Nice write-up.

> Screen offers a multi-user mode which allows to attach to Screen sessions owned by other users in the system (given the proper credentials). These multi-user features are only available when Screen is installed with the setuid-root bit set. This configuration of Screen results in highly increased attack surface, because of the complex Screen code that runs with root privileges in this case

I wasn't aware of such a feature but I guess it's what makes stuff like tmate possible. Speaking of which, I wonder if tmux is affected by the same kind of vulnerability.

replies(4): >>43971918 #>>43971987 #>>43973735 #>>43977030 #

thanatos519 ◴[13 May 25 15:01 UTC] No.43973735[source]▶

>>43971862 #

It's a great feature! I have used it in training sessions by giving each student their own login on my laptop, with the ssh shell restricted to 'screen -x <specific user's window>' - the only window that user could use based on screen's ACLs. Then during exercises I (as the owner of the screen) could switch to each student's screen on the projector so the class could see what they had done.

Not surprised to hear it's full of security holes. :)

replies(1): >>43982010 #

1. cess11 ◴[14 May 25 07:50 UTC] No.43982010[source]▶

>>43973735 #

You can get close to the same experience with tmux.

https://superuser.com/questions/188501/is-there-a-way-to-hav...

Use groups instead of chmod 777.

↑