Full Disclosure mailing list archives

Re: Symlink vulnerabilities

From: "Raj Mathur (राज माथुर)" <raju () linux-delhi org>
Date: Sat, 22 Oct 2011 11:36:26 +0530

On Saturday 22 Oct 2011, Valdis.Kletnieks () vt edu wrote:

If you had your way, would you see it implemented as /tmp/<USER>
/<USER>/tmp, or some other way?


It should be site-configurable - some places may have a large fast
/tmp area and they want a per-user directory on that disk space. 
Other places may want to have /tmp redirected to /home/${USER}/tmp
so disk quotas apply, etc etc.


There's also the issue of mounting /tmp noexec and nosuid on a separate 
filesystem that many people choose.  Location of per-user tmp filesystem 
would also be impacted by that.

At first sight, the best option from that point of view seems to be a 
per-user tmp under /tmp/$USER/ and mount /tmp noexec, nosuid.  If you 
choose the ~$USER/tmp option, you'll probably have to do some userfs 
jugglery to achieve the same objective.

Regards,

-- Raj
-- 
Raj Mathur                raju () kandalaya org      http://kandalaya.org/
       GPG: 78D4 FC67 367F 40E2 0DD5  0FEF C968 D0EF CC68 D17F
PsyTrance & Chill: http://schizoid.in/   ||   It is the mind that moves


----------------------------------------------------------------
"This e-mail message may contain confidential, proprietary or legally
privileged information. It should not be used by anyone who is not
the original intended recipient. If you have erroneously received this
message, please delete it immediately and notify the sender. Any use
or disclosure of the contents is unauthorised and may be unlawful. All
liability for viruses is excluded to the fullest extent permitted
by law. The recipient acknowledges that NetAmbit or its subsidiaries
and associated companies, (collectively "NetAmbit Group"), are unable
to exercise control or ensure or guarantee the integrity of/over the
contents of the information contained in e-mail transmissions and further
acknowledges that any views expressed in this message are those of the
individual sender and no binding nature of the message shall be implied
or assumed unless the sender does so expressly with due authority of
NetAmbit Group.."

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Symlink vulnerabilities bugs (Oct 21)
- Re: Symlink vulnerabilities Valdis . Kletnieks (Oct 21)
  - Re: Symlink vulnerabilities Michal Zalewski (Oct 21)
    - Re: Symlink vulnerabilities Byron Sonne (Oct 21)
    - Re: Symlink vulnerabilities Valdis . Kletnieks (Oct 21)
    - Re: Symlink vulnerabilities Raj Mathur (राज माथुर) (Oct 21)
    - Re: Symlink vulnerabilities James Condron (Oct 22)
    - Re: Symlink vulnerabilities Michal Zalewski (Oct 22)
    - Re: Symlink vulnerabilities dave bl (Oct 21)
- Re: Symlink vulnerabilities Tavis Ormandy (Oct 22)
  - Re: Symlink vulnerabilities bugs (Oct 22)
    - Re: Symlink vulnerabilities Leon Kaiser (Oct 24)
    - Re: Symlink vulnerabilities bugs (Oct 24)
- Re: Symlink vulnerabilities vladz (Oct 24)
  - Re: Symlink vulnerabilities xD 0x41 (Oct 25)
    - Re: Symlink vulnerabilities Tavis Ormandy (Oct 25)

(Thread continues...)