Re: spying (deleted) file entries in other users' directories

From: Valdis.Kletnieksat_private
Date: Tue Jun 25 2002 - 07:47:11 PDT

Next message: Mark Lastdrager: "Remote buffer overflow in resolver code of libc"

Previous message: Felix Harris: "(Fwd) Re: Java and buffer overflows"
In reply to: D.C. van Moolenbroek: "Re: spying (deleted) file entries in other users' directories"
Next in thread: Maximiliano Pérez: "RE: spying (deleted) file entries in other users' directories"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 24 Jun 2002 11:47:16 +0200, "D.C. van Moolenbroek" said:

> Note that on my system, reading doesn't work on /tmp ("input error: Invalid
> argument"); it seems to work on all other directories though. Generally I
> suppose it's a bad idea to put something sensitive in a filename, but what
> do the other bytes represent, that show up in the hexdump?

Presumably, they are the inode number - remember that a directory is just
a list of (name)(inode number) pairs (overlooking things like ReiserFS or
IBM's JFS2 that doen't store directories as a linear list but as a btree or
other structure - in those cases the other bytes may be directory metadata).
-- 
				Valdis Kletnieks
				Computer Systems Senior Engineer
				Virginia Tech

application/pgp-signature attachment: stored

Next message: Mark Lastdrager: "Remote buffer overflow in resolver code of libc"
Previous message: Felix Harris: "(Fwd) Re: Java and buffer overflows"
In reply to: D.C. van Moolenbroek: "Re: spying (deleted) file entries in other users' directories"
Next in thread: Maximiliano Pérez: "RE: spying (deleted) file entries in other users' directories"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jun 26 2002 - 10:25:07 PDT