Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 8184] As root WIRESHARK_RUN_FROM_BUILD

Wireshark-bugs: [Wireshark-bugs] [Bug 8184] As root WIRESHARK_RUN_FROM_BUILD_DIRECTORY set, but

Date: Thu, 10 Jan 2013 20:20:31 +0000

What	Removed	Added
Status	UNCONFIRMED	RESOLVED
Resolution	---	NOTABUG

Comment # 4 on bug 8184 from Jaap Keuter

(In reply to comment #2)
> Hmm, so WIRESHARK_RUN_FROM_BUILD_DIRECTORY does not do anything if I am root?
> 
> >If we were started
> >with special privileges, it's not safe to allow the user to point
> >us to some other directory
> 
> 
> But what is unsafe here pointing to the build directory?

This has been put in from the beginning (see r21866), I guess for a scenario
like this:

user@host:~$ cd src/wireshark
user@host:~/src/wireshark$ ls plugins/my_hack/*.so
plugins/my_hack/plugin_spawning_shell.so
user@host:~/src/wireshark$ export WIRESHARK_RUN_FROM_BUILD_DIRECTORY=1
user@host:~/src/wireshark$ sudo wireshark

Now if this wasn't in you can point it to your evil plugin, which spawns a (now
root-)shell from its registration routine.

Therefore this is not a bug, it's a feature.

You are receiving this mail because:

You are watching all bug changes.

References:
- [Wireshark-bugs] [Bug 8184] New: As root WIRESHARK_RUN_FROM_BUILD_DIRECTORY set, but plugins from /usr/local/lib/wireshark/plugins/1.8.3 loaded
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 8184] As root WIRESHARK_RUN_FROM_BUILD_DIRECTORY set, but plugins from /usr/local/lib/wireshark/plugins/1.8.3 loaded
Next by Date: [Wireshark-bugs] [Bug 8190] New: fail to compile in Debian
Previous by thread: [Wireshark-bugs] [Bug 8184] As root WIRESHARK_RUN_FROM_BUILD_DIRECTORY set, but plugins from /usr/local/lib/wireshark/plugins/1.8.3 loaded
Next by thread: [Wireshark-bugs] [Bug 8184] As root WIRESHARK_RUN_FROM_BUILD_DIRECTORY set, but plugins from /usr/local/lib/wireshark/plugins/1.8.3 loaded
Index(es):
- Date
- Thread