Re: hard links on Linux create local DoS vulnerability and security problems

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: flaps@dgp.toronto.edu (Alan J Rosenthal), bugtraq@securityfocus.com, full-disclosure@lists.netsys.com
Subject: Re: hard links on Linux create local DoS vulnerability and security problems
From: Carl Ekman <calle@gosig.nu>
Date: Mon, 24 Nov 2003 19:38:38 +0100
In-reply-to: <20031124174512.76AD94F85A@atlas.dgp.toronto.edu>
References: <20031124174512.76AD94F85A@atlas.dgp.toronto.edu>
User-agent: KMail/1.5.4

Since many systems have /tmp on the root filesystem /tmp could also be used to 
link to setuid binaries.

> The link to setuid programs is more of concern except that it won't be able
> to happen unless you have setuid-root programs in a home directory
> partition, which sounds bad anyway.

References:
- Re: hard links on Linux create local DoS vulnerability and security problems
  - From: Alan J Rosenthal

Prev by Date: GLSA: phpsysinfo (200311-06)
Next by Date: Re: yet another panic() in OpenBSD
Previous by thread: Re: hard links on Linux create local DoS vulnerability and security problems
Next by thread: Re: hard links on Linux create local DoS vulnerability and security problems
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux