Re: hard links on Linux create local DoS vulnerability and security problems

From: Carl Ekman (calle_at_gosig.nu)
Date: 11/24/03

Next message: vb_at_dontpanic.ulm.ccc.de: "Re: Unhackable network really unhackable?"

Previous message: Steven Leikeim: "Re: hard links on Linux create local DoS vulnerability and security problems"
In reply to: Alan J Rosenthal: "Re: hard links on Linux create local DoS vulnerability and security problems"
Next in thread: Casper ***: "Re: hard links on Linux create local DoS vulnerability and security problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: flaps@dgp.toronto.edu (Alan J Rosenthal), bugtraq@securityfocus.com, full-disclosure@lists.netsys.com
Date: Mon, 24 Nov 2003 19:38:38 +0100

Since many systems have /tmp on the root filesystem /tmp could also be used to
link to setuid binaries.

> The link to setuid programs is more of concern except that it won't be able
> to happen unless you have setuid-root programs in a home directory
> partition, which sounds bad anyway.

Next message: vb_at_dontpanic.ulm.ccc.de: "Re: Unhackable network really unhackable?"

Previous message: Steven Leikeim: "Re: hard links on Linux create local DoS vulnerability and security problems"
In reply to: Alan J Rosenthal: "Re: hard links on Linux create local DoS vulnerability and security problems"
Next in thread: Casper ***: "Re: hard links on Linux create local DoS vulnerability and security problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]