Re: Call for review: restricted hardlinks.
From: Pawel Jakub Dawidek (pjd_at_FreeBSD.org)
Date: 03/08/04
- Previous message: Pawel Jakub Dawidek: "Re: Call for review: restricted hardlinks."
- Maybe in reply to: Pawel Jakub Dawidek: "Call for review: restricted hardlinks."
- Next in thread: Cédric Devillers: "Re: Call for review: restricted hardlinks."
- Reply: Cédric Devillers: "Re: Call for review: restricted hardlinks."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 8 Mar 2004 23:08:28 +0100 To: "Georg-W. Koltermann" <gwk@rahn-koltermann.de>
On Mon, Mar 08, 2004 at 10:10:38PM +0100, Georg-W. Koltermann wrote:
+> When you restrict links, do you want to restrict copying as well?
+>
+> Seems somewhat paranoid to me. You already need write permission on the
+> directory where you create the link, and permissions are checked against
+> the inode on open(2) anyway.
This is because this gives an attacker some possibilities.
For example he is able to create hard link to some set-uid binary.
After some time, a security-related bug will be found in this application,
administrator will change it with good version, but old, vulnerable
version will be still in system.
Administrator have to be really careful when fixing such problems
and check number of hard links or just remove such program using 'rm -P'.
-- Pawel Jakub Dawidek http://www.FreeBSD.org pjd@FreeBSD.org http://garage.freebsd.pl FreeBSD committer Am I Evil? Yes, I Am!
- application/pgp-signature attachment: stored
- Previous message: Pawel Jakub Dawidek: "Re: Call for review: restricted hardlinks."
- Maybe in reply to: Pawel Jakub Dawidek: "Call for review: restricted hardlinks."
- Next in thread: Cédric Devillers: "Re: Call for review: restricted hardlinks."
- Reply: Cédric Devillers: "Re: Call for review: restricted hardlinks."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
