mailing list archives
Re: smbd remote file creation vulnerability
From: Pavol Luptak <wilder () hq alert sk>
Date: Tue, 26 Jun 2001 14:53:38 +0200
On Tue, Jun 26, 2001 at 09:53:29AM +0300, Jarno Huuskonen wrote:
On Mon, Jun 25, Pavol Luptak wrote:
Linux kernels with openwall patch (with restricted links in /tmp) are
imunne to this type of attack (following symlinks does not work, link
owner does not match with file's owner).
The symlink restrictions work only in /tmp (mode 1777) directories, so
making the symlink in your own homedir still works (should work).
Yes, the symlink does not have to be in /tmp, but you have to ensure
the path to your symlink in your own homedir is enough short to fill in
NetBIOS name (about 15 characters).
[wilder () hq alert sk] [http://hq.alert.sk/~wilder] [talker: ttt.sk 5678]