Full Disclosure mailing list archives

Re: Re: hard links on Linux create local DoS vulnerability and security problems

From: Christopher Allene <cwis () nerim fr>
Date: Thu, 27 Nov 2003 02:57:59 +0100

Jeremiah Cornelius (jeremiah () nur net) wrote on 2003-11-26 at 14:18:

And a mandatory system profile in /etc , which aliases ln as 'ln -s' might 
help.  One for each valid shell.


How would such an approach avoid people calling symlink(2) or
unalias/whatever ?

Seems as good as security through obscurity to me.

-- 
Christopher Allène

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: hard links on Linux create local DoS vulnerability and security problems, (continued)
- - - Re: hard links on Linux create local DoS vulnerability and security problems Valdis . Kletnieks (Nov 25)
  - Re: hard links on Linux create local DoS vulnerability and security problems Zow (Nov 25)
- Re: hard links on Linux create local DoS vulnerability and security problems vb (Nov 25)
- Message not available
  - Re[2]: hard links on Linux create local DoS vulnerability and security problems 3APA3A (Nov 25)
- Re: hard links on Linux create local DoS vulnerability and security problems Steven Leikeim (Nov 26)
  - Re: hard links on Linux create local DoS vulnerability and security problems Jakob Lell (Nov 24)
  - Re: Re: hard links on Linux create local DoS vulnerability and security problems Jeremiah Cornelius (Nov 26)
    - Re: Re: hard links on Linux create local DoS vulnerability and security problems Peter Busser (Nov 26)
    - Re: Re: hard links on Linux create local DoS vulnerability and security problems Kurt Seifried (Nov 26)
    - Re: Re: hard links on Linux create local DoS vulnerability and security problems Michal Zalewski (Nov 26)
    - Re: Re: hard links on Linux create local DoS vulnerability and security problems Christopher Allene (Nov 26)
- Re: hard links on Linux create local DoS vulnerability and security problems Alan J Rosenthal (Nov 24)
  - Re: hard links on Linux create local DoS vulnerability and security problems Casper Dik (Nov 24)
  - Re: hard links on Linux create local DoS vulnerability and security problems Carl Ekman (Nov 24)
    - Re: hard links on Linux create local DoS vulnerability and security problems Trent Petrasek (Nov 24)
  - Re: hard links on Linux create local DoS vulnerability and security problems Seth Breidbart (Nov 24)
  - Re: hard links on Linux create local DoS vulnerability and security problems I.R.van Dongen (Nov 25)
  - Re: hard links on Linux create local DoS vulnerability and security problems Bob Beck (Nov 25)