Home page logo

bugtraq logo Bugtraq mailing list archives

Re: smbd remote file creation vulnerability
From: Steve Beattie <steve () wirex net>
Date: Wed, 27 Jun 2001 17:10:03 -0700

On Wed, Jun 27, 2001 at 12:42:52AM +0200, Wichert Akkerman wrote:
Previously Pavol Luptak wrote:
Linux kernels with openwall patch (with restricted links in /tmp) are
imunne to this type of attack (following symlinks does not work, link
owner does not match with file's owner).

If symlink don't work you can still use a hardlink though.

Note that the same option in the OpenWall patch also prevents the creation
of hardlinks to files that you don't own.

Steve Beattie                               Don't trust programmers? 
<steve () wirex net>                         Complete StackGuard distro at
http://immunix.org/~steve/                         immunix.org

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]