On Wed, Jun 27, 2001 at 12:42:52AM +0200, Wichert Akkerman wrote: > Previously Pavol Luptak wrote: > > Linux kernels with openwall patch (with restricted links in /tmp) are > > imunne to this type of attack (following symlinks does not work, link > > owner does not match with file's owner). > > If symlink don't work you can still use a hardlink though. Note that the same option in the OpenWall patch also prevents the creation of hardlinks to files that you don't own. -- Steve Beattie Don't trust programmers? <steveat_private> Complete StackGuard distro at http://immunix.org/~steve/ immunix.org
This archive was generated by hypermail 2b30 : Thu Jun 28 2001 - 13:19:33 PDT