permissions – WindowsTechs.com

Does it matter (and go widely unnoticed) that GitLab CI+docker-executor produces world-writable files, or do "we" need to raise awareness for that?

Posted on November 1, 2024 by Frank Fricke

I have a vague feeling that there is a wide spread security problem which goes unnoticed. I’m trying to find out how to check the level of relevance and awareness out there or how to maybe raise it.
Situation:
When using GitLab CI with the… Continue reading Does it matter (and go widely unnoticed) that GitLab CI+docker-executor produces world-writable files, or do "we" need to raise awareness for that?→

etckeeper: check out in a safe way?

Posted on October 30, 2024 by koddo

Etckeeper is great, but it’s not clear from the docs, how to check out a commit or a branch directly in /etc in a secure way. The issue is when you do a check out, git doesn’t care about metadata and permissions, and you have to restore th… Continue reading etckeeper: check out in a safe way?→

Ubuntu 24.04 and SUID

Posted on October 27, 2024 by hilmbert

I’m trying to understand SUID privilege escalation and I’m trying to recreate some issues.
But both all my scripts and binaries drop the SUID-Bit and get executed with the user with which I’m executing the them.
Therefore my question how c… Continue reading Ubuntu 24.04 and SUID→

putting database mongod.conf under $HOME/web-server/. instead of /etc/

Posted on October 8, 2024 by user1709076

Would there be any security concerns saving mongod.conf to $HOME/web-server/mongod.conf instead of /etc/mongod.conf ?
If the config was under $HOME/web-server/mongod.conf would that mean someone (or a buffer-overrun executable) could chang… Continue reading putting database mongod.conf under $HOME/web-server/. instead of /etc/→

Practical difference between 600 and 400 permissions for /etc/shadow

Posted on June 16, 2024 by max

I’m reading Linux All-in-One for Dummies and it recommends verifying that the permissions on /etc/shadow are set to 400 (p. 456). Elsewhere on this site, I see that some distros set this to 600 instead, allowing write in addition to read. … Continue reading Practical difference between 600 and 400 permissions for /etc/shadow→

Screen Recording permission in Android 9.0 goes away when force stopping app [migrated]

Posted on May 22, 2024 by Zk Sumon

When I use third party app for screen recording 1st time I have to give screen recording permission.
Then I don’t have to give that permission.
2nd 3rd times …. It can record.
I don’t find any settings in android 9.0 to revoke it.
It ask… Continue reading Screen Recording permission in Android 9.0 goes away when force stopping app [migrated]→

Difference between "picture in picture" and "draw over other apps" in android. And their security vulnerability [migrated]

Posted on May 22, 2024 by Zk Sumon

What are the security vulnerability of these two permissions?
Is it possible that I’m typing something in chat heads of a fb messenger and other third app with "display over other app" permission listening it ?
Or drawing a fake … Continue reading Difference between "picture in picture" and "draw over other apps" in android. And their security vulnerability [migrated]→

Bell-Lapadula model "Execute" permission

Posted on May 16, 2024 by hegash

In all BLP model descriptions I’ve seen, the permissions set is defined to be {Read, Write, Append, Execute}.
None of the three BLP security properties

The Simple Security Property states that a subject at a given security level may not r… Continue reading Bell-Lapadula model "Execute" permission→

How to disable Files and Folders permissions for specific apps on macOS Sonoma?

Posted on January 27, 2024 by Shadowz

I am trying to establish a secure folder in macOS Sonoma 14.3 which should be only accessible to applications with explicitly granted permissions. As far as I understand, this can be only done for certain folders (Documents, Downloads…) … Continue reading How to disable Files and Folders permissions for specific apps on macOS Sonoma?→

How to add Write Access on FAT32 USB drive?

Posted on January 6, 2024 by xland44

I’m at my wits end here. I installed the Windows OS on my USB drive in order to install Windows on a brand new PC; for some reason this installation failed.
Upon plugging in the USB to my (old) PC again a few days later, I see that I can’t… Continue reading How to add Write Access on FAT32 USB drive?→