Re: Security Anti Symlink Attack Patch for 2.1.71

Jon Lewis (jlewis@inorganic5.fdt.net)
Mon, 8 Dec 1997 00:19:32 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Boris Tobotras: "Re: Security Anti Symlink Attack Patch for 2.1.71"
Previous message: David Woodhouse: "Re: 2.1.71 cant delete ipv4 routes"

On Sun, 7 Dec 1997, Christoph Lameter wrote:
[I'm not sure who really wrote this, though I don't think Christoph]
> > cd /tmp
> > mkdir myowndir
> > ln -s anything myowndir/anything
> >
> > Now where do you want myowndir/anything to point to?

That's not really relevant. The point of the symlink patch is to stop foo
from putting a symlink in /tmp and having bar follow it thus doing
something silly like creating a mode 666 .rhosts file. Nothing bar runs
is likely to want to create files (temp files, lock files, etc.) in
/tmp/foosdir/.

------------------------------------------------------------------
Jon Lewis <jlewis@fdt.net> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____

Next message: Boris Tobotras: "Re: Security Anti Symlink Attack Patch for 2.1.71"
Previous message: David Woodhouse: "Re: 2.1.71 cant delete ipv4 routes"