Re: smbd remote file creation vulnerability

From: Phil Stracchino (alaricat_private)
Date: Wed Jun 27 2001 - 16:35:09 PDT

Next message: Steve Beattie: "Re: smbd remote file creation vulnerability"

Previous message: Michal Zalewski: "Re: smbd remote file creation vulnerability"
In reply to: Wichert Akkerman: "Re: smbd remote file creation vulnerability"
Next in thread: Steve Beattie: "Re: smbd remote file creation vulnerability"
Next in thread: Joachim Blaabjerg: "Re: smbd remote file creation vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jun 27, 2001 at 12:42:52AM +0200, Wichert Akkerman wrote:
> Previously Pavol Luptak wrote:
> > Linux kernels with openwall patch (with restricted links in /tmp) are
> > imunne to this type of attack (following symlinks does not work, link
> > owner does not match with file's owner).
> 
> If symlink don't work you can still use a hardlink though.

Which is yet another reason for making /tmp a separate filesystem.


-- 
 Linux Now!   ..........Because friends don't let friends use Microsoft.
 phil stracchino   --   the renaissance man   --   mystic zen biker geek
        alaricat_private                halmayneat_private
   2000 CBR929RR, 1991 VFR750F3 (foully murdered), 1986 VF500F (sold)

Next message: Steve Beattie: "Re: smbd remote file creation vulnerability"
Previous message: Michal Zalewski: "Re: smbd remote file creation vulnerability"
In reply to: Wichert Akkerman: "Re: smbd remote file creation vulnerability"
Next in thread: Steve Beattie: "Re: smbd remote file creation vulnerability"
Next in thread: Joachim Blaabjerg: "Re: smbd remote file creation vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Jun 28 2001 - 13:06:02 PDT