Secure Linux patch

• Previous message: Greg Alexander: "Re: Quake 2 Linux"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

>         mkdir /tmp/foo          (no sticky bit on foo)
>         ln /etc/passwd /tmp/foo
>         mv /tmp/{foo/,}passwd

Thanks for reporting this. A stupid problem, I should have thought a bit
more of things like this. ;-) I wonder why noone reported it earlier...

I wasn't going to release my new patch right now, but since I would have to
release a fix anyway, ...here goes the full thing.

You can get my new Secure Linux patch at:
http://www.false.com/security/linux/secure-linux.tar.gz
ftp://ftp.dataforce.net/pub/solar/secure-linux.tar.gz

Features:
* Non-executable user stack area
* Link-in-/tmp fix (fixed;-)
* Restricted /proc (extra functionality compared to original route's patch)
* Improved securelevel support (finally really secure, and extra features)
* Unofficial bugfixes (hope I'll be able to remove them when 2.0.34 is out)

Signed,
Solar Designer

• Next message: KSR[T]: "KSR[T] Advisory #7: filter"
• Previous message: Greg Alexander: "Re: Quake 2 Linux"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:41:12 PDT