Re: smbd remote file creation vulnerability

From: Jarno Huuskonen (Jarno.Huuskonenat_private)
Date: Mon Jun 25 2001 - 23:53:29 PDT

Next message: Pavol Luptak: "Re: smbd remote file creation vulnerability"

Previous message: Joseph Nicholas Yarbrough: "Re: smbd remote file creation vulnerability"
In reply to: Pavol Luptak: "Re: smbd remote file creation vulnerability"
Next in thread: Pavol Luptak: "Re: smbd remote file creation vulnerability"
Next in thread: Fatal Connect: "Re: smbd remote file creation vulnerability"
Reply: Pavol Luptak: "Re: smbd remote file creation vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Jun 25, Pavol Luptak wrote:
> Linux kernels with openwall patch (with restricted links in /tmp) are
> imunne to this type of attack (following symlinks does not work, link
> owner does not match with file's owner).

The symlink restrictions work only in /tmp (mode 1777) directories, so
making the symlink in your own homedir still works (should work).

-Jarno

-- 
Jarno Huuskonen <Jarno.Huuskonenat_private>

Next message: Pavol Luptak: "Re: smbd remote file creation vulnerability"
Previous message: Joseph Nicholas Yarbrough: "Re: smbd remote file creation vulnerability"
In reply to: Pavol Luptak: "Re: smbd remote file creation vulnerability"
Next in thread: Pavol Luptak: "Re: smbd remote file creation vulnerability"
Next in thread: Fatal Connect: "Re: smbd remote file creation vulnerability"
Reply: Pavol Luptak: "Re: smbd remote file creation vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Jun 26 2001 - 13:16:57 PDT