warped security

From: Albert D. Cahalan (acahalan@cs.uml.edu)
Date: Sun Oct 27 2002 - 03:24:28 EST

Next message: Adam J. Richter: "Patch(2.5.44 and 2.4.x): 6 files referenced pci_dev.driver_data instead of pci_{g,s}et_drv_data"
Previous message: Alex Riesen: "Re: Swap doesn't work"
Next in thread: jw schultz: "Re: warped security"
Reply: jw schultz: "Re: warped security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

As a non-root user:

a. I can't do readlink() on /proc/1/exe ("ls -l /proc/1/exe")
b. I can do "cat /proc/1/maps" to see what files are mapped

That's backwards. If a user can read /proc/1/cmdline, then
they might as well be permitted to readlink() on /proc/1/exe
as well. Reading /proc/1/maps is quite another matter,
exposing more info than the (prohibited) /proc/1/fd/* does.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Adam J. Richter: "Patch(2.5.44 and 2.4.x): 6 files referenced pci_dev.driver_data instead of pci_{g,s}et_drv_data"
Previous message: Alex Riesen: "Re: Swap doesn't work"
Next in thread: jw schultz: "Re: warped security"
Reply: jw schultz: "Re: warped security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Oct 31 2002 - 22:00:32 EST