On Tue, Aug 31, 2004 at 03:48:53PM +0300, Anatoly Vorobey wrote: > On Tue, Aug 31, 2004 at 12:56:50PM +0300, Muli Ben-Yehuda wrote: > > Salutations! > > > > I would like to have a process that will > > - run with de-facto root priviledges (can do anything root can do) > > - appears to be running under a different user with standard ps / top > > and friends > > Depending on whom you wish to deceive (human or another program) and how > clever they are, you may want to try something as simple as > (oh-dear-God-I-don't-believe-I'm-gonna-say-it) naming uid 0 something > other than 'root' on that system.
No go, I'm afraid. Naming uid 0 something else breaks everything that expects uid 0 to be named root. Also, simply adding another user named 'foo' and giving him uid 0 breaks, because the standard tools show the first name in /etc/passwd that has a given uid. Depending on which one I put first, root or foo, all uid 0 processes will appear to belong to one of them. Cheers and thanks, Muli -- Muli Ben-Yehuda http://www.mulix.org | http://mulix.livejournal.com/
signature.asc
Description: Digital signature
