Bugtraq mailing list archives
Re: Publically writable directories
From: ig25 () mvmampc66 ciw uni-karlsruhe de (Thomas Koenig)
Date: Tue, 18 Jun 1996 19:07:54 +0200
Bill Pemberton wrote:
Thomas Koenig writes:$ ln -s /tmp/some.file /etc/nologin
Can this also create security problems for a 'normal' user?
Quite easily. What about: ln -s /tmp/some.file /home/blah/.rhosts
If I implement the lstat/lstat solution (i.e check wether I've actually created the file), and then back off once I've noticed the switch, all I've done is create an EMPTY file, and I can't be sure which one. Is there any way such an empty file can be of more than nuisance value to an attacker? -- Thomas Koenig, Thomas.Koenig () ciw uni-karlsruhe de, ig25@dkauni2.bitnet. The joy of engineering is to find a straight line on a double logarithmic diagram.
Current thread:
- [linux-security] Big security hole in kerneld's request_route Igor Chudov @ home (Jun 13)
- system() call in suid programs Not Joe (Jan 03)
- Re: system() call in suid programs Valdis.Kletnieks () vt edu (Jun 14)
- Re: system() call in suid programs Max Hailperin (Jun 14)
- Publically writable directories Thomas Koenig (Jun 16)
- Re: Publically writable directories Neil Soveran-Charley (Jun 16)
- Re: Publically writable directories Brian Mitchell (Jun 17)
- Re: Publically writable directories Thomas Koenig (Jun 18)
- Re: Publically writable directories Bill Pemberton (Jun 18)
- Re: Publically writable directories Thomas Koenig (Jun 18)
- Re: system() call in suid programs Valdis.Kletnieks () vt edu (Jun 14)
- system() call in suid programs Not Joe (Jan 03)
- Re: Publically writable directories Bill Pemberton (Jun 17)
- Re: Publically writable directories David DeSimone (Jun 17)
- Re: Publically writable directories Valdis.Kletnieks () vt edu (Jun 17)
- Re: Publically writable directories Michael Dilger (Jun 17)