0x22bb/hacktricks
1
2
Fork 0
mirror of https://github.com/carlospolop/hacktricks.git synced 2023-12-14 19:12:55 +01:00
Code Releases Activity

GitBook: [master] one page modified

Browse source
This commit is contained in:
CPol 2021-03-25 00:57:03 +00:00 committed by gitbook-bot
parent 9bf5a75d23
commit 263556f229
No known key found for this signature in database
GPG key ID: 07D2180C7B12D0FF
1 changed files with 5 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
linux-unix/privilege-escalation/interesting-groups-linux-pe/README.md
View file

@ -192,3 +192,8 @@ If you have write permissions over the docker socket read [**this post about how
Usually **members** of the group **`adm`** have permissions to **read log** files located inside _/var/log/_.
Therefore, if you have compromised a user inside this group you should definitely take a **look to the logs**.
## Auth group
Inside OpenBSD the **auth** group usually can write in the folders _**/etc/skey**_ and _**/var/db/yubikey**_ if they are used.
These permissions may be abused with the following exploit to **escalate privileges** to root: [https://raw.githubusercontent.com/bcoles/local-exploits/master/CVE-2019-19520/openbsd-authroot](https://raw.githubusercontent.com/bcoles/local-exploits/master/CVE-2019-19520/openbsd-authroot)