Skip to content

Instantly share code, notes, and snippets.

@sorin-ionescu

sorin-ionescu/deescalation.rb

Created March 1, 2011 02:41
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save sorin-ionescu/848498 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save sorin-ionescu/848498 to your computer and use it in GitHub Desktop.
Download ZIP
Ruby privilege de-escalation.
Raw
deescalation.rb
if ENV['USER'] == 'root'
puts "uid: #{Process::UID.rid} euid: #{Process::UID.eid} gid: #{Process::GID.rid} egid: #{Process::GID.eid}"
fork do
begin
uid, gid = Process.euid, Process.egid
target_uid, target_gid = ENV['SUDO_UID'].to_i, ENV['SUDO_GID'].to_i
if uid != target_uid or gid != target_gid
Process.initgroups(ENV['SUDO_USER'], target_gid)
Process::GID.change_privilege(target_gid)
Process::UID.change_privilege(target_uid)
end
rescue Errno::EPERM => e
exit 1
end
puts "uid: #{Process::UID.rid} euid: #{Process::UID.eid} gid: #{Process::GID.rid} egid: #{Process::GID.eid}"
# DO STUFF HERE
end
puts "uid: #{Process::UID.rid} euid: #{Process::UID.eid} gid: #{Process::GID.rid} egid: #{Process::GID.eid}"
end
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment