On Mon, Oct 9, 2017 at 1:23 PM, Mikhail Kurinnoi <viewizard@xxxxxxxxxxxxx> wrote: > But, isn't this mean we could have this scenario of offline > manipulations: > 1) store old file with xattrs; > 2) wait; > 3) replace new file with fixed exploits on old one. An attacker capable of making offline manipulations is capable of modifying the filesystem such that they can give the file the appropriate inode number anyway.
