Extra Credit 3

Due: November 11, 2022
Points: 35

The program setdate runs setuid to root. Its function is to change the date of the system. Please analyze the robustness and security of this program using the source code (available in the Programs area of the class web page). In particular, how hard would it be for someone to obtain excess privileges using this program? How hard would it be for someone to supply input that caused the program to crash, or do something wrong?

UC Davis sigil
Matt Bishop
Office: 2209 Watershed Sciences
Phone: +1 (530) 752-8060
Email: mabishop@ucdavis.edu
ECS 235A, Computer and Information Security
Version of October 24, 2022 at 12:36PM

You can also obtain a PDF version of this.

Valid HTML 4.01 Transitional Built with BBEdit Built on a Macintosh