Re: smbd remote file creation vulnerability

From: Steve Beattie (steveat_private)
Date: Wed Jun 27 2001 - 17:10:03 PDT

Next message: Michal Zalewski: "Re: smbd remote file creation vulnerability"

Previous message: Phil Stracchino: "Re: smbd remote file creation vulnerability"
In reply to: Wichert Akkerman: "Re: smbd remote file creation vulnerability"
Next in thread: Joachim Blaabjerg: "Re: smbd remote file creation vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jun 27, 2001 at 12:42:52AM +0200, Wichert Akkerman wrote:
> Previously Pavol Luptak wrote:
> > Linux kernels with openwall patch (with restricted links in /tmp) are
> > imunne to this type of attack (following symlinks does not work, link
> > owner does not match with file's owner).
> 
> If symlink don't work you can still use a hardlink though.

Note that the same option in the OpenWall patch also prevents the creation
of hardlinks to files that you don't own.

-- 
Steve Beattie                               Don't trust programmers? 
<steveat_private>                         Complete StackGuard distro at
http://immunix.org/~steve/                         immunix.org

Next message: Michal Zalewski: "Re: smbd remote file creation vulnerability"
Previous message: Phil Stracchino: "Re: smbd remote file creation vulnerability"
In reply to: Wichert Akkerman: "Re: smbd remote file creation vulnerability"
Next in thread: Joachim Blaabjerg: "Re: smbd remote file creation vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Jun 28 2001 - 13:19:33 PDT