Bugtraq: Re: /proc filesystem allows bypassing directory permissions on

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: /proc filesystem allows bypassing directory permissions on

From: Pavel Machek <pavel () ucw cz>
Date: Wed, 4 Nov 2009 09:31:10 +0100

On Wed 2009-11-04 09:06:25, Gabor Gombas wrote:

On Wed, Nov 04, 2009 at 10:17:13AM +1100, psz () maths usyd edu au wrote:

But, mount requires root (and root can do anything, including shooting
himself in the foot).


Irrelevant. The statement was that if /proc is not mounted, then the
link count tells if there are other ways to access the inode besides the
path you have used to access it. I showed you that this statement is
false.


You showed almost nothing. If you assume root interference, he can do
anything, including overwriting kernel with another one.

OTOH /proc is mounted by default...
                                                                        Pavel
-- 
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html

By Date By Thread

Current thread:

Re: /proc filesystem allows bypassing directory permissions on, (continued)