Re: Security Anti Symlink Attack Patch for 2.1.71

Ian Collier (imc@comlab.ox.ac.uk)
Mon, 8 Dec 1997 18:04:21 +0000 (GMT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Christopher Horn: "Re: PnP in 2.2 ?"
Previous message: Albert D. Cahalan: "Re: Let's vote for PnP on 2.2 (Was: PnP in 2.2 ?)"
Maybe in reply to: Christoph Lameter: "Security Anti Symlink Attack Patch for 2.1.71"
Next in thread: Jon Lewis: "Re: Security Anti Symlink Attack Patch for 2.1.71"
Reply: Jon Lewis: "Re: Security Anti Symlink Attack Patch for 2.1.71"

On Mon, 8 Dec 1997 00:19:32 -0500 (EST), Jon Lewis said:
> On Sun, 7 Dec 1997, Christoph Lameter wrote:
> [I'm not sure who really wrote this, though I don't think Christoph]
> > > cd /tmp
> > > mkdir myowndir
> > > ln -s anything myowndir/anything
> > >
> > > Now where do you want myowndir/anything to point to?

> That's not really relevant. The point of the symlink patch is to stop foo
> from putting a symlink in /tmp and having bar follow it thus doing
> something silly like creating a mode 666 .rhosts file.

Read the above one more time (swapping the arguments to ln) ...

cd /tmp
mkdir myowndir
ln -s myowndir/anything anything
cd myowndir
ln -s /.rhosts anything

imc

Next message: Christopher Horn: "Re: PnP in 2.2 ?"
Previous message: Albert D. Cahalan: "Re: Let's vote for PnP on 2.2 (Was: PnP in 2.2 ?)"
Maybe in reply to: Christoph Lameter: "Security Anti Symlink Attack Patch for 2.1.71"
Next in thread: Jon Lewis: "Re: Security Anti Symlink Attack Patch for 2.1.71"
Reply: Jon Lewis: "Re: Security Anti Symlink Attack Patch for 2.1.71"