From 6f1c942a31fc517e0be53ccc55d5162b2c7806aa Mon Sep 17 00:00:00 2001 From: Denys Vlasenko Date: Sun, 14 Jan 2018 14:44:30 +0100 Subject: [PATCH] NOFORK_NOEXEC.sh: a script to find "interesting" applets Signed-off-by: Denys Vlasenko --- NOFORK_NOEXEC.sh | 34 ++++++++++++++++++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100755 NOFORK_NOEXEC.sh diff --git a/NOFORK_NOEXEC.sh b/NOFORK_NOEXEC.sh new file mode 100755 index 000000000..f4eeeef87 --- /dev/null +++ b/NOFORK_NOEXEC.sh @@ -0,0 +1,34 @@ +#!/bin/sh + +exec >NOFORK_NOEXEC.lst1 + +false && grep -Fv 'NOFORK' NOFORK_NOEXEC.lst \ +| grep -v 'noexec.' | grep -v 'noexec$' \ +| grep -v ' suid' \ +| grep -v ' daemon' \ +| grep -v ' longterm' \ +| grep rare + +echo === nofork candidate +grep -F 'nofork candidate' NOFORK_NOEXEC.lst \ + +echo === noexec candidate +grep -F 'noexec candidate' NOFORK_NOEXEC.lst \ + +echo === ^C +grep -F '^C' NOFORK_NOEXEC.lst \ +| grep -F ' - ' \ + +echo === talks +grep -F 'talks' NOFORK_NOEXEC.lst \ +| grep -F ' - ' \ + +echo === +grep -Fv 'NOFORK' NOFORK_NOEXEC.lst \ +| grep '^[^ ][^ ]* - ' \ +| grep -v 'noexec.' | grep -v ' - noexec$' \ +| grep -v ' suid' \ +| grep -v ' daemon' \ +| grep -v 'longterm' \ +| grep -v 'interactive' \ +| grep -v 'hardware' \