Re: /proc filesystem allows bypassing directory permissions on Linux

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Oct 23, 2009, at 3:56 PM, Pavel Machek <pavel@xxxxxx> wrote:


Demonstrate how to get access to the file with /proc unmounted and you
have a point. Demonstrate how to get access on anything else then
Linux and you have a point. Otherwise there's a security hole.
If the directory is mounted via NFS or is exported there are several ways...so software written to assume directory permissions are sufficent to protect users from other unpriveliged users is broken in general. Even if it is usually secure enough on non-Linux. It is not always.
[Index of Archives]     [Linux Security]     [Netfilter]     [PHP]     [Yosemite News]     [Linux Kernel]

  Powered by Linux