Re: /proc filesystem allows bypassing directory permissions on Linux
- From: Pavel Machek <pavel@xxxxxx>
- Date: Mon, 26 Oct 2009 16:06:06 +0100
On Mon 2009-10-26 15:37:50, Dan Yefimov wrote:
On 26.10.2009 13:54, psz@xxxxxxxxxxxxxxxxx wrote:
Dear Dan,Just looked more carefully at fs/proc/base.c. That behavior is due
... in authentic kernels /proc/<PID>/fd/<FD> are symlinks ...
They appear to /bin/ls as symlinks, but observation suggests that they
"act" as hardlinks. Could that be fixed somehow? (I did look at the
kernel fs/proc/base.c but did not make much sense to me...)
to proc_fd_info() called from proc_fd_link() obtains file->f_path,
that in turn contains the reference to the open file dentry and
hence inode. That's exactly why those symlinks behave as hardlinks.
This behavior assumes, that if you were able to open the file,
you've all necessary transition permissions to access it's inode.
But in order to follow them you need privileges to read the process
memory, which hardly restricts the impact of this behavior. I don't
think this should be fixed, since /proc/<PID>/fd/ is mainly for
debugging purposes.
guest certianly does not have permission to ptrace() pavel's
processes, so...
Pavel
--
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html
- Follow-Ups:
- Re: /proc filesystem allows bypassing directory permissions on Linux
- From: Dan Yefimov
- Re: /proc filesystem allows bypassing directory permissions on Linux
- References:
- Prev by Date: Re: /proc filesystem allows bypassing directory permissions on Linux
- Next by Date: Re: /proc filesystem allows bypassing directory permissions on Linux
- Previous by thread: Re: /proc filesystem allows bypassing directory permissions on Linux
- Next by thread: Re: /proc filesystem allows bypassing directory permissions on Linux
- Index(es):
Relevant Pages
|
