Active Topics
-
Firefox with Leste (10)
to Maemo 7 / Leste by teroyk - 3 days, 20 hrs ago - more...
|
2020-08-14
, 11:14
|
|
Community Council |
Posts: 4,920 |
Thanked: 12,867 times |
Joined on May 2012
@ Southerrn Finland
|
#3
|
That's a bit strange since I vaguely recall that refhashlist is protected by aegis. (could be wrong since it is years since I played with N9 but still...)
__________________
Dave999: Meateo balloons. What’s so special with em? Is it a ballon?
Dave999: Meateo balloons. What’s so special with em? Is it a ballon?
| The Following 2 Users Say Thank You to juiceme For This Useful Post: | ||
|
|
2020-08-15
, 00:28
|
|
Posts: 35 |
Thanked: 26 times |
Joined on Oct 2018
|
#5
|
Originally Posted by coderus
Accli -I returns normal
newly flashed but still in openmode?
EMMC cleaned by flasher --erase-user-data
Th bin file was original.
| The Following User Says Thank You to Sunset_Shimmer For This Useful Post: | ||
|
|
2020-08-15
, 05:06
|
|
Posts: 35 |
Thanked: 26 times |
Joined on Oct 2018
|
#6
|
Originally Posted by coderus
Pretty sure that not openmode.
newly flashed but still in openmode?
Will this situation happen????
I've never met this.
| The Following User Says Thank You to Sunset_Shimmer For This Useful Post: | ||
 |
|
2020-08-17
, 19:54
|
|
Posts: 4,118 |
Thanked: 8,901 times |
Joined on Aug 2010
@ Ruhrgebiet, Germany
|
#8
|
I could also not remember and my device is in OpenMode so no reference.
Please follow all the 'this' links from this post on
http://talk.maemo.org/showthread.php?t=96282
via
http://talk.maemo.org/showthread.php...95#post1498795
and you will end here
http://talk.maemo.org/showthread.php...9&postcount=70
which tells me refhashlist was writable but only with caution!
Please follow all the 'this' links from this post on
http://talk.maemo.org/showthread.php?t=96282
via
http://talk.maemo.org/showthread.php...95#post1498795
and you will end here
http://talk.maemo.org/showthread.php...9&postcount=70
which tells me refhashlist was writable but only with caution!
__________________
SIM-Switcher, automated SIM switching with a Double (Dual) SIM adapter
--
Thank you all for voting me into the Community Council 2014-2016!
Please consider your membership / supporting Maemo e.V. and help to spread this by following/copying this link to your TMO signature:
[MC eV] Maemo Community eV membership application, http://talk.maemo.org/showthread.php?t=94257
editsignature, http://talk.maemo.org/profile.php?do=editsignature
SIM-Switcher, automated SIM switching with a Double (Dual) SIM adapter
--
Thank you all for voting me into the Community Council 2014-2016!
Please consider your membership / supporting Maemo e.V. and help to spread this by following/copying this link to your TMO signature:
[MC eV] Maemo Community eV membership application, http://talk.maemo.org/showthread.php?t=94257
editsignature, http://talk.maemo.org/profile.php?do=editsignature
| The Following 2 Users Say Thank You to peterleinchen For This Useful Post: | ||
/var/lib/aegis/refhashlist (or some path like this)
The file has a rw-rw-rw- permission which means any user could read and write it.
So,a malware executed by user(with lowest permission) could just write it to an empty file to break the Aegis and crash the MeeGo OS.
For example:
-----------
Don't try this on your phone!!!!
----------
I tried this on a newly flashed N9 device with a 3rd party terminal without developer mode.
I just simply run:
echo ''>>The path to the refhashlist file.
And
echo ''>>There is also a refhashlist.bak file.
If you do so,any executable with root permission won't run again.The device won't shutdown unless you force it by long-press the power button.
The device reports OS error and request fixing when you try to boot it after the force shutdown.
I'm afraid that this would be a critical safety problem for MeeGo.
By the way,is there a security problem with the OpenSSH Server installed by Developer Mode?
Last edited by Sunset_Shimmer; 2020-08-14 at 09:14.