Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: /proc filesystem allows bypassing directory permissions on

From: Pavel Machek <pavel () ucw cz>
Date: Wed, 4 Nov 2009 09:31:10 +0100
On Wed 2009-11-04 09:06:25, Gabor Gombas wrote:

On Wed, Nov 04, 2009 at 10:17:13AM +1100, psz () maths usyd edu au wrote:


But, mount requires root (and root can do anything, including shooting
himself in the foot).


Irrelevant. The statement was that if /proc is not mounted, then the
link count tells if there are other ways to access the inode besides the
path you have used to access it. I showed you that this statement is
false.


You showed almost nothing. If you assume root interference, he can do
anything, including overwriting kernel with another one.

OTOH /proc is mounted by default...
                                                                        Pavel
-- 
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html
Previous By Date Next
Previous By Thread Next

Current thread: