Re: hard links create local DoS vulnerability and security problems

From: Matthias Andree
Date: Mon Nov 24 2003 - 22:17:36 EST

Next message: Matthias Andree: "lk-changelog.pl 0.199"
Previous message: Jean Tourrilhes: "Re: [BUG] Ricoh Cardbus -> Can't get interrupts"
In reply to: Dick Streefland: "Re: aic7xxx loading oops in 2.6.0-test10"
Next in thread: Jan Kara: "Re: hard links create local DoS vulnerability and security problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 24 Nov 2003, Jamie Lokier wrote:

> You seem to be suggesting that the only method is to have a separate
> partition for each user, which is absurd.

In a previous life, I've seen this happen on a Solaris box, where each
user's home directory was auto-mounted. I haven't tried to betray quotas
at that time though.

> /tmp is owned by root and anyone can create a hard link in /tmp to
> other files, on a system where /tmp doesn't have its own filesystem.

Convert /tmp to swap, mount -t tmpfs :-)

--
Matthias Andree

Encrypt your mail: my GnuPG key ID is 0x052E7D95
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Matthias Andree: "lk-changelog.pl 0.199"
Previous message: Jean Tourrilhes: "Re: [BUG] Ricoh Cardbus -> Can't get interrupts"
In reply to: Dick Streefland: "Re: aic7xxx loading oops in 2.6.0-test10"
Next in thread: Jan Kara: "Re: hard links create local DoS vulnerability and security problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]