- 论坛徽章:
- 0
|
在代码中从root切换到其它用户,并且该用户有当前目录写权限,但却总是不能生成core文件。
已经采用不切换用户的方法进行了测试,这时是可以产生core的;
同时在切换后是可以使用system("echo 'tesstestestestestetestestet!!!!!!' > hahahahhaahahah"); 产生hahahahhaahahah这个文件的,但就是无法产生core文件,
附上代码,麻烦各位大侠帮忙测试测试,不胜感激!!!- #include <pwd.h>
- #include <stdio.h>
- #include <string.h>
- #include <unistd.h>
- #include <sys/types.h>
- #include <stdlib.h>
- int main()
- {
- #if 1
- struct passwd *pw;
- //char *username = "root";
- char *username = "nobody";
- if (getuid() == 0 || geteuid() == 0)
- {
- if (username == 0 || *username == '\0')
- {
- fprintf(stderr, "can't run as root without the -u switch\n");
- exit(-1);
- }
- if ((pw = getpwnam(username)) == NULL)
- {
- fprintf(stderr, "can't find the user %s to switch to\n", username);
- exit(-1);
- }
- if (setgid(pw->pw_gid) < 0 || setuid(pw->pw_uid) < 0)
- {
- fprintf(stderr, "failed to assume identity of user %s\n", username);
- exit(-1);
- }
- }
- #endif
- printf("now user change to group id %d, user id %d\n", getgid(), getuid());
- system("echo 'tesstestestestestetestestet!!!!!!' > hahahahhaahahah");
- char *test_a = "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa";
- char *test_b;
- strcpy(test_b, test_a);
- *(char *)1=1;
- printf("test_b:%s\n", test_b);
- }
复制代码 |
|