Home page logo

bugtraq logo Bugtraq mailing list archives

Re: /proc filesystem allows bypassing directory permissions on Linux
From: Matthew Dempsky <matthew () dempsky org>
Date: Tue, 27 Oct 2009 09:59:41 -0700

On Tue, Oct 27, 2009 at 4:29 AM, Tony Finch <dot () dotat at> wrote:
According to POSIX, if you open the directory with O_SEARCH then openat()
does not re-check search (+x) permissions.

I stand corrected.  (Though my test system doesn't appear to have O_SEARCH.)

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]