RE: random PID patch

Alan Cox (alan@lxorguk.ukuu.org.uk)
11 Nov 2002 13:10:03 +0000

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alan Cox: "Re: [PATCH][2.5] notsc option needs some attention/TLC"
Previous message: Alan Cox: "Re: [PATCH] sysfs stuff for eisa bus [1/3]"
Next in thread: Pavel Machek: "Re: random PID patch"
Reply: Pavel Machek: "Re: random PID patch"

On Mon, 2002-11-11 at 10:12, Heusden van, FJJ (Folkert) wrote:
> Sometimes, (well; frequently) programs that create temporary
> files let the filename depend on their PID. A hacker could use
> that knowledge. So if you know that the application that

Still can if its random. The attacker can be the one who exec's the
vulnerable app. The attacker can use dnotify

> things it's not supposed to. Like forcing suid apps to create
> a file in the startup-scripts dir. or something.

Just use namespaces and give every login their own /tmp

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: [PATCH][2.5] notsc option needs some attention/TLC"
Previous message: Alan Cox: "Re: [PATCH] sysfs stuff for eisa bus [1/3]"
Next in thread: Pavel Machek: "Re: random PID patch"
Reply: Pavel Machek: "Re: random PID patch"