Re: link() security

Chris Wright (chris@wirex.com)
Thu, 11 Apr 2002 18:15:24 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Linus Torvalds: "Re: [prepatch] address_space-based writeback"
Previous message: Peter Chubb: "make TAGS to work with bitkeeper"

* xystrus (xystrus@haxm.com) wrote:
>
> Is there a good reason why a user can successfully link() a file to
> which they do not have any access?

Other than the fact that it's standard behaviour? ;-) Well, the SUS
actually makes an allowance for this:

"The implementation may require that the calling process has
permission to access the existing file."

If you are interested, the Openwall patch does just this (among other things)
http://openwall.com. Work based on Solar Designer's Openwall patch has
been brought forward to more recent 2.4 and 2.5 kernels. Both the
following projects implement the Openwall secure link feature:

http://grsecurity.net
http://lsm.immunix.org

This can break some applications that make assumptions wrt. link(2)
(Courier MTA for example).

cheers,
-chris
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Linus Torvalds: "Re: [prepatch] address_space-based writeback"
Previous message: Peter Chubb: "make TAGS to work with bitkeeper"