unix security
play

UNIX Security CSE497b - Spring 2007 Introduction Computer and - PowerPoint PPT Presentation

Nov 06, 2023 •451 likes •721 views

UNIX Security CSE497b - Spring 2007 Introduction Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse497b-s07/ CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger UNIX System

  1. UNIX Security CSE497b - Spring 2007 Introduction Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse497b-s07/ CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger

  2. UNIX System • Originated in the late 60 ’ s, early 70 ’ s – Bell Labs: Ken Thompson, Dennis Ritchie, Douglas McIlroy • Multiuser Operating System – Enables protection from other users – Enables protection of system services from users • Simpler, faster approach than Multics CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 2

  3. UNIX Security • Each user owns a set of files – Simple way to express who else can access – All user processes run as that user • The system owns a set of files – Root user is defined for system principal – Root can access anything • Users can invoke system services – Need to switch to root user (setuid) • Q: Does UNIX enable configuration of “secure” systems? CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 3

  4. UNIX Challenges • More about protection than security – Implicitly assumes non-malicious user and trusted system processes • Discretionary Access Control (DAC) – User or their processes may update permission assignments • Each program has all user ’ s rights • Must trust their processes to be non-malicious • File permission assignments – Assignment based on what is necessary for things to work • All your processes have all your rights • System services have full access – Users invoke setuid (root) procs that have all rights • Must trust system processes CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 4

  5. UNIX Protection State • Subjects – Users – Groups – Processes make accesses on behalf of users belonging to particular groups • Objects – Files – Directories • Operations – Read – Write – Execute CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 5

  6. Subjects • Users – Username – User ID (UID) – Groups – Special User: root • Process – UID, GID • Real user ID • Effective user ID • FS user ID • Saved user ID – Users run processes – Effective UID determines access, generally (FS UID for Linux) CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 6

  7. Groups • Users belong to one or more groups • Primary group: defined in /etc/passwd • All other possible groups: defined in /etc/group – group_name:group_passwd:GID:list_of_users • Commands to change group membership – e.g., newgrp • Group membership gives additional permissions beyond UID CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 7

  8. UNIX Authentication • Login process – Started at boot time (runs as ‘ root ’ ) – Takes username and password – Applies crypt() to password with stored salt – Compares to value in /etc/ shadow for that user • Starts process for user – Executes file specified as login in /etc/passwd – Identity (uid, gid, groups) is set by login CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 8

  9. UNIX UID Transitions • UID transitions – For login process: UIDs are root – After authentication, the shell ’ s UIDs are: tjaeger – Exec su: real is tjaeger; effective is root • Transitions among UIDs are complex R=1,E=1,S=0 setresuid(1, 1, 0) setresuid(1, 1, 0) setresuid(0, 0, 0) R=0,E=0,S=0 setresuid(0, 0, 0) setresuid(1, 0, 1) setresuid(1, 1, 0) setresuid(1, 0, 1) setresuid(0, 0, 0) setresuid(1, 0, 0) setresuid(1, 1, 0) setresuid(1, 0, 0) setresuid(0, 0, 0) R=1,E=0,S=1 setresuid(1, 0, 1) setresuid(0, 1, 1) setresuid(1, 1, 0) setresuid(0, 1, 0) setresuid(1, 1, 0) setresuid(0, 1, 1) setresuid(0, 0, 0) setresuid(1, 0, 1) setresuid(1, 0, 0) setresuid(0, 0, 0) setresuid(0, 1, 0) setresuid(1, 0, 1) setresuid(0, 1, 1) R=1,E=0,S=0 setresuid(1, 0, 0) setresuid(0, 0, 1) setresuid(1, 1, 0) setresuid(1, 1, 1) setresuid(0, 0, 1) setresuid(0, 0, 0) setresuid(0, 1, 0) setresuid(1, 0, 1) setresuid(0, 1, 1) setresuid(1, 0, 0) setresuid(1, 1, 1) setresuid(0, 1, 0) setresuid(1, 0, 0) R=0,E=1,S=1 setresuid(0, 1, 1) setresuid(0, 0, 1) setresuid(1, 0, 1) setresuid(0, 1, 0) setresuid(0, 1, 1) setresuid(0, 0, 1) setresuid(1, 0, 0) setresuid(1, 1, 1) R=0,E=1,S=0 setresuid(0, 1, 0) setresuid(0, 0, 1) setresuid(0, 1, 1) setresuid(1, 1, 1) setresuid(0, 1, 0) setresuid(0, 0, 1) setresuid(1, 1, 1) setresuid(1, 1, 1) R=0,E=0,S=1 setresuid(0, 0, 1) setresuid(1, 1, 1) R=1,E=1,S=1 setresuid(0, 0, 0) setresuid(0, 0, 1) setresuid(0, 1, 0) setresuid(0, 1, 1) setresuid(1, 0, 0) setresuid(1, 0, 1) setresuid(1, 1, 0) setresuid(1, 1, 1) (c) An FSA describing setresuid in Linux CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 9

  10. UNIX Objects == Files • UNIX objects are represented as files – Regular files – Device (character or block) files – Socket files – FIFO files – Link files • Directories – Hierarchical organization of files – Paths: Sequence of directories followed by a file name • Files are stored as inodes – Inode to data mapping is fixed – File name to inode mapping is not fixed • Beyond socket files, there is no network access control CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 10

  11. UNIX Mode Bits • Operations – Read, write, execute • Users – Owner, Group, World • File type – Semantics of operations • Based on file type – Different semantics between files and dirs CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 11

  12. Changing permissions • Change permissions of a file – chmod • chmod 644 file -- owner can read/write, group, others can read only • chmod u+x file -- adds execute permission for owner • Change owner of a file – chown • chown new_owner file • Change group of a file – chgrp • chgrp new_group file CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 12

  13. UNIX Authorization • File ’ s owner UID == Process ’ s effective UID – fsuid for Linux – Check owner mode bits • File group GID is a member of process ’ s active group set – Check group mode bits • Otherwise, – Check others mode bits CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 13

  14. UNIX Permissions • What UNIX permissions are granted to... – An editor process? – An editor process that you run? – An editor process that someone else runs? – An editor process that contains malware? – An editor process used to edit a password file? • Q: Can we restrict an editor to a single file? CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 14

  15. Nobody • Special user with no ownership – Belongs to no groups • Q: What permissions are available to nobody ? CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 15

  16. Chroot • Create a domain in which a process is confined – Process can only read/write within file system subtree – Applies to all descendant processes – Can carry file descriptors in ‘ chroot jail ’ CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 16

  17. Chroot Vulnerability • Unfortunately, chroot can trick its own system – define a passwd file at <newroot>/etc/passwd – run su • su thinks that this is the real passwd file – gives root access • Use mknod to create device file to access physical memory • Setup requires great care – Never run chroot process as root – Must not be able to get root privileges – No control by chrooted process (user) of contents in jail – Be careful about descriptors, open sockets, IPC that may be available CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 17

  18. UID Transition: Setuid • A special bit in the mode bits • Execute file – Resulting process has the effective (and fs) UID/GID of file owner • Enables a user to escalate privilege – For executing a trusted service • User defines execution environment – e.g., Environment variables • Service must protect itself or user can gain root access CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 18

  19. Setuid Execution • Process A running as – UID=X • Fork process A to create process B – Both running with UID=X • The exec file C in process B with setuid bit set and owner of root – process A has UID=X – process B has UID=root CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 19

  20. Confused Deputy Problem • Situation – A program has authority (setuid root file) – Is confused into using that authority incorrectly • Example – Call httpd supplied libexecdir – Add your own libraries to overwrite passwd (if httpd runs as root) • Also a concern for network daemons – Why? • A motivation for capability systems – Discuss later CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Page 20

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Chapter 7: Unix Security Chapter 7: 1 Objectives Understand the security features provided

Chapter 7: Unix Security Chapter 7: 1 Objectives Understand the security features provided

Chapter 7: Unix Security Chapter 7: 1 Objectives Understand the security features provided by a typical operating system. Introduce the basic Unix security model. See how general security principles are implemented in an actual

733 views • 59 slides
Crash Course in Unix For more info check out the Unix man pages -or-

Crash Course in Unix For more info check out the Unix man pages -or-

Crash Course in Unix For more info check out the Unix man pages -or- http://www.cs.rpi.edu/~hollingd/unix -or- Unix in a Nutshell (an OReilly book). 1 Unix Accounts To access a Unix system you need to have an account . Unix

1.05k views • 84 slides
Introduction to Computer Security UNIX Security Pavel Laskov Wilhelm Schickard Institute for

Introduction to Computer Security UNIX Security Pavel Laskov Wilhelm Schickard Institute for

Introduction to Computer Security UNIX Security Pavel Laskov Wilhelm Schickard Institute for Computer Science Genesis: UNIX vs. MULTICS MULTICS (Multiplexed Information and Computing Service) a high-availability, modular, multi-component

480 views • 35 slides
Where can UNIX be used? Real Unix computers Introduction to Unix: Introduction to Unix:

Where can UNIX be used? Real Unix computers Introduction to Unix: Introduction to Unix:

1/19/2010 Where can UNIX be used? Real Unix computers Introduction to Unix: Introduction to Unix: tak, the Whitehead Scientific Linux server t k th Whit h d S i tifi Li most important/useful commands &amp; Apply

259 views • 8 slides
Unix Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C. Ding - COMP4631 - L19 1

Unix Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C. Ding - COMP4631 - L19 1

Unix Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C. Ding - COMP4631 - L19 1 Agenda A short history of Unix Login and user accounts access control Instances of general security principles Audit configuration

641 views • 38 slides
Computer Security 3e Dieter Gollmann Chapter 7: 1 Security.di.unimi.it/sicurezza1516/ Chapter

Computer Security 3e Dieter Gollmann Chapter 7: 1 Security.di.unimi.it/sicurezza1516/ Chapter

Computer Security 3e Dieter Gollmann Chapter 7: 1 Security.di.unimi.it/sicurezza1516/ Chapter 7: Unix Security Chapter 7: 2 Objectives Understand the security features provided by a typical operating system. Introduce the basic Unix

667 views • 62 slides
Todays topics Unix history Unix philosophy Unix standards Unix future Future

Todays topics Unix history Unix philosophy Unix standards Unix future Future

Todays topics Unix history Unix philosophy Unix standards Unix future Future classes Unix history The Unix family of operating systems have been in existence since around 1969. Most folks agree the system that Ken

1.13k views • 57 slides
Why We Should Take a Second What do we learn from Look at Access Control in Unix this?

Why We Should Take a Second What do we learn from Look at Access Control in Unix this?

Introduction A model for Unix Why We Should Take a Second What do we learn from Look at Access Control in Unix this? Concluding remarks Jason Crampton Information Security Group Royal Holloway, University of London NordSec 2008

590 views • 27 slides
CS-527 Software Security OS Security Asst. Prof. Mathias Payer Department of Computer Science

CS-527 Software Security OS Security Asst. Prof. Mathias Payer Department of Computer Science

CS-527 Software Security OS Security Asst. Prof. Mathias Payer Department of Computer Science Purdue University TA: Kyriakos Ispoglou https://nebelwelt.net/teaching/17-527-SoftSec/ Spring 2017 Unix security model Table of Contents Unix

463 views • 28 slides
Advanced UNIX CIS 218 Advanced UNIX Director ies again CIS 218 Advanced UNIX 1 Directory

Advanced UNIX CIS 218 Advanced UNIX Director ies again CIS 218 Advanced UNIX 1 Directory

Advanced UNIX CIS 218 Advanced UNIX Director ies again CIS 218 Advanced UNIX 1 Directory Implementation The starting (root) directory of each filesystem is created by formatting . A UNIX directory is a file : it has an owner, group

502 views • 12 slides
CloudABI: Pure capability-based security for UNIX Speaker: Ed Schouten, ed@nuxi.nl Overview

CloudABI: Pure capability-based security for UNIX Speaker: Ed Schouten, ed@nuxi.nl Overview

32C3, Hamburg 2015-12-28 CloudABI: Pure capability-based security for UNIX Speaker: Ed Schouten, ed@nuxi.nl Overview Whats wrong with UNIX? Introducing CloudABI Developing CloudABI software Starting CloudABI processes Use

849 views • 40 slides
Unix Essentials Devin J. Pohly &lt;djpohly@cse.psu.edu&gt; CMPSC 311: Introduction to Systems

Unix Essentials Devin J. Pohly &lt;djpohly@cse.psu.edu&gt; CMPSC 311: Introduction to Systems

Systems and Internet i Infrastructure Security i Institute for Networking and Security Research Department of Computer Science and Engineering Pennsylvania State University, University Park, PA Unix Essentials Devin J. Pohly

315 views • 20 slides
UNIX Programming: A brief introduction to UNIX history and most useful commands. Toni Hermoso

UNIX Programming: A brief introduction to UNIX history and most useful commands. Toni Hermoso

UNIX Programming: A brief introduction to UNIX history and most useful commands. Toni Hermoso Pulido Bioinformatics Core Facilty UNIX History (I) UNIX is a computer operating system originally developed in 1969 by a group of AT&amp;T

336 views • 30 slides
Advanced UNIX CIS 218 Advanced UNIX 1 . The File Structure (Ch. 4 , Sobell) Objectives to

Advanced UNIX CIS 218 Advanced UNIX 1 . The File Structure (Ch. 4 , Sobell) Objectives to

Advanced UNIX CIS 218 Advanced UNIX 1 . The File Structure (Ch. 4 , Sobell) Objectives to supplement the Introduction to UNIX slides with extra information on files 1 CIS 218 Advanced UNIX Overview 1 . Access Permissions 2 . Links 2

358 views • 22 slides
Advanced UNIX CIS 118 Intro to UNIX 1 . The File Structure (Ch. 4 , Sobell) Objectives to

Advanced UNIX CIS 118 Intro to UNIX 1 . The File Structure (Ch. 4 , Sobell) Objectives to

Advanced UNIX CIS 118 Intro to UNIX 1 . The File Structure (Ch. 4 , Sobell) Objectives to supplement the Introduction to UNIX slides with extra information on files 1 CIS 118 Intro to UNIX Overview 1 . Access Permissions 2 . Links 2

266 views • 22 slides
What is Unix? Unix: explained markus schnalke &lt;meillo@marmaro.de&gt; Unix Operating

What is Unix? Unix: explained markus schnalke &lt;meillo@marmaro.de&gt; Unix Operating

What is Unix? Unix: explained markus schnalke &lt;meillo@marmaro.de&gt; Unix Operating system Kernel (Systemcalls) Userland Filesystem Background and History Philosophy Historical background Timeline The late 60s and early 70s

579 views • 9 slides
TELECOMMUNICATION SYSTEM (UMTS) ECE 2526 MOBILE COMMUNICATION Monday, 04 June 2018 1 WHAT

TELECOMMUNICATION SYSTEM (UMTS) ECE 2526 MOBILE COMMUNICATION Monday, 04 June 2018 1 WHAT

UNIVERSAL MOBILE TELECOMMUNICATION SYSTEM (UMTS) ECE 2526 MOBILE COMMUNICATION Monday, 04 June 2018 1 WHAT IS UMTS? 1. The U niversal M obile T elecommunications S ystem (UMTS) is a third generation mobile cellular system for networks

162 views • 12 slides
Workflow application development with Web-Service on EGEE Tristan Glatard EGEE and SEE-GRID

Workflow application development with Web-Service on EGEE Tristan Glatard EGEE and SEE-GRID

Workflow application development with Web-Service on EGEE Tristan Glatard EGEE and SEE-GRID Summer School on Grid Application Support June 27 th Medical imaging Grid computing June 27th Practical on Workflow application development 1 with

365 views • 21 slides
Tier One Core Instruction &amp; Universal Screening Nancy Thomas Price, SDE November 30

Tier One Core Instruction &amp; Universal Screening Nancy Thomas Price, SDE November 30

Tier One Core Instruction &amp; Universal Screening Nancy Thomas Price, SDE November 30 2010 November 30, 2010 This training is adapted from SDE / NCRTI Idaho Module 1 Training, 2010. RTI is a preventive framework RTI is a multi-level

701 views • 36 slides
Mike Borsuk mike.borsuk@optimizely.com About Optimizely Experiment Everywhere o Experimentation,

Mike Borsuk mike.borsuk@optimizely.com About Optimizely Experiment Everywhere o Experimentation,

The Continuing Story Of Analytics at Optimizely : Batch, Streaming and Lambda Systems Mike Borsuk mike.borsuk@optimizely.com About Optimizely Experiment Everywhere o Experimentation, Personalization, Recommendations o Web, Mobile, OTT, Full

568 views • 19 slides
Statistical Modeling of UNIX Statistical Modeling of UNIX Users and Processes With Users and

Statistical Modeling of UNIX Statistical Modeling of UNIX Users and Processes With Users and

Statistical Modeling of UNIX Statistical Modeling of UNIX Users and Processes With Users and Processes With Application to Computer Application to Computer Intrusion Detection Intrusion Detection Wen-Hua Ju 1 Acknowledgement

798 views • 27 slides
Web Development Unix CSCI-GA 1122 Operating System Web Development Unix CSCI-GA 1122

Web Development Unix CSCI-GA 1122 Operating System Web Development Unix CSCI-GA 1122

Web Development Unix CSCI-GA 1122 Operating System Web Development Unix CSCI-GA 1122 Operating System Software that manages a computers Operating Systems resources Allocates resources among other programs Resources include the

254 views • 12 slides
STATS 701 Data Analysis using Python Lecture 18: the UNIX/Linux Command Line UNIX/Linux: a

STATS 701 Data Analysis using Python Lecture 18: the UNIX/Linux Command Line UNIX/Linux: a

STATS 701 Data Analysis using Python Lecture 18: the UNIX/Linux Command Line UNIX/Linux: a (very) brief history 1960s: Multics (Bell Labs, MIT, GE), a time-sharing operating system 1970s: UNIX developed at Bell Labs 1980s: the UNIX wars

481 views • 29 slides
CSE 513 I ntroduction to Operating Systems Class 8 - I nput/ Output File Systems Jonathan

CSE 513 I ntroduction to Operating Systems Class 8 - I nput/ Output File Systems Jonathan

CSE 513 I ntroduction to Operating Systems Class 8 - I nput/ Output File Systems Jonathan Walpole Dept. of Comp. Sci. and Eng. Oregon Health and Science University I / O devices Device (mechanical hardware) Device controller

1.42k views • 95 slides

More recommend