PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-09 22:21:29 +00:00
Code Issues Projects Releases Wiki Activity

Show a warning if we are running setuid or setgid.

Browse Source
This commit is contained in:
david
2012-05-18 01:27:14 +00:00
parent 824834bbf3
commit 8d621f91aa
1 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
main.cc
View File

@@ -132,6 +132,15 @@ extern NmapOps o; /* option structure */
extern void set_program_name(const char *name); extern void set_program_name(const char *name);
/* Show a warning when running setuid or setgid, as this allows code execution
(for example NSE scripts) as the owner/group. */
static void check_setugid(void) {
if (getuid() != geteuid())
log_write(LOG_PLAIN, "WARNING: Running Nmap setuid, as you are doing, is a major security risk.\n");
if (getgid() != getegid())
log_write(LOG_PLAIN, "WARNING: Running Nmap setgid, as you are doing, is a major security risk.\n");
}
int main(int argc, char *argv[]) { int main(int argc, char *argv[]) {
/* The "real" main is nmap_main(). This function hijacks control at the /* The "real" main is nmap_main(). This function hijacks control at the
beginning to do the following: beginning to do the following:
@@ -148,6 +157,9 @@ int main(int argc, char *argv[]) {
set_program_name(argv[0]); set_program_name(argv[0]);
/* Warn if setuid/setgid. */
check_setugid();
#ifdef __amigaos__ #ifdef __amigaos__
if(!OpenLibs()) { if(!OpenLibs()) {
error("Couldn't open TCP/IP Stack Library(s)!"); error("Couldn't open TCP/IP Stack Library(s)!");