Bugtraq mailing list archives

Re: Why you should avoid world-writable directories

From: maf () FIREDOOR SE (Martin Forssen)
Date: Wed, 23 Dec 1998 11:20:27 +0100


On Tue, 22 Dec 1998, Alan Cox wrote:

world-writable directories. The security community would love to see
another portable IPC mechanism offering guaranteed user identification.
(I suggest that kernels add a getpeeruid() system call, showing the real
uid that called connect(), for UNIX-domain sockets and for loopback TCP
sockets.) However, while we're waiting, we need a few setuid programs.


getpeeruid() has a problem since multiple processes may write to one
datagram socket, also processes can change uid and file handles can be
passed around.

Both recent *BSD and Linux 2.1.x have per message authentication data
for AF_UNIX sockets that is available as a control message (ie you can
get it via recvmsg()).


One candidate to this IPC mechanism is the doors API on Solaris. It is
fast and has a call where the server can get the credentials of the
caller. There is an alpha-quality implementation for linux available.
See http://www.rampant.org/doors for more information.

        /MaF

Current thread:

Verifying file data integrity using L6 gilbert () PGCI CA (Dec 17)
- Re: Verifying file data integrity using L6 Ng Pheng Siong (Dec 18)
- <Possible follow-ups>
- Re: Verifying file data integrity using L6 James R Grinter (Dec 20)
- Re: Verifying file data integrity using L6 Marc SCHAEFER (Dec 20)
  - Re: Verifying file data integrity using L6 Curt Sampson (Dec 21)
  - Why you should avoid world-writable directories D. J. Bernstein (Dec 21)
    - Re: Why you should avoid world-writable directories Darren Reed (Dec 22)
    - Re: Why you should avoid world-writable directories Alan Cox (Dec 22)
    - Re: Why you should avoid world-writable directories Casper Dik (Dec 23)
    - Re: Why you should avoid world-writable directories Martin Forssen (Dec 23)
    - Linux PAM (up to 0.64-2) local root compromise Michal Zalewski (Dec 23)
    - Re: Linux PAM (up to 0.64-2) local root compromise Savochkin Andrey Vladimirovich (Dec 24)
    - 3COM Documentation backdoors in CB3500 Pedro Ribeiro (Dec 23)
    - New perl module Net::RawIP Sergey V. Kolychev (Dec 22)
    - Update on Cisco IOS 12.0 security bug John Bashinski (Dec 22)
    - Re: New perl module Net::RawIP route () RESENTMENT INFONEXUS COM (Dec 22)
    - [SecureXpert Labs Advisory SX-98.12.23-01] Widespread DoS Richard Reiner (Dec 23)
    - Merry Christmas to Sun! (Was: L0pht NFR N-Code Modules Updated) Anonymous (Dec 23)
    - Re: Merry Christmas to Sun! (Was: L0pht NFR N-Code Modules Casper Dik (Dec 24)
    - Re: Merry Christmas to Sun! (Was: L0pht NFR N-Code Modules Dima Volodin (Dec 25)

(Thread continues...)