Bugtraq mailing list archives

Re: hard links on Linux create local DoS vulnerability and security problems

From: Carl Ekman <calle () gosig nu>
Date: Mon, 24 Nov 2003 19:38:38 +0100

Since many systems have /tmp on the root filesystem /tmp could also be used to 
link to setuid binaries.

The link to setuid programs is more of concern except that it won't be able
to happen unless you have setuid-root programs in a home directory
partition, which sounds bad anyway.

Current thread:

hard links on Linux create local DoS vulnerability and security problems Jakob Lell (Nov 24)
- Re: hard links on Linux create local DoS vulnerability and security problems Brian Bennett (Nov 24)
- Re: hard links on Linux create local DoS vulnerability and security problems Bruno Lustosa (Nov 24)
  - Re: hard links on Linux create local DoS vulnerability and security problems David F. Skoll (Nov 24)
- Re: hard links on Linux create local DoS vulnerability and security problems Steven Leikeim (Nov 24)
- Re: [Full-Disclosure] hard links on Linux create local DoS vulnerability and security problems Michal Zalewski (Nov 24)
- <Possible follow-ups>
- Re: hard links on Linux create local DoS vulnerability and security problems Alan J Rosenthal (Nov 24)
  - Re: hard links on Linux create local DoS vulnerability and security problems Carl Ekman (Nov 24)
  - Re: hard links on Linux create local DoS vulnerability and security problems Casper Dik (Nov 24)