Re: SECURITY HOLE in namei.c ??

Aaron Ucko (amu@mit.edu)
Sun, 01 Sep 1996 15:54:33 EDT

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Herbert Rosmanith: "Re: SECURITY HOLE in namei.c ??"
Previous message: root: "SECURITY HOLE in namei.c ??"
In reply to: root: "SECURITY HOLE in namei.c ??"
Next in thread: Hoyer, Harald: "Re: SECURITY HOLE in namei.c ??"
Reply: Hoyer, Harald: "Re: SECURITY HOLE in namei.c ??"

>From the Linux FAQ:
> Question 6.24. I've discovered a huge security hole in rm !

> No you haven't. You are obviously new to Unix and need to read a good
> book on it to find out how things work. Clue: ability to delete files
> under Unix depends on permission to write the directory they are in.

As for the EISDIR stuff, have you checked relevant standards documents?
I'm pretty sure that Linux's behavior is correct.

-- 
Aaron Ucko
<amu@mit.edu>

Next message: Herbert Rosmanith: "Re: SECURITY HOLE in namei.c ??"
Previous message: root: "SECURITY HOLE in namei.c ??"
In reply to: root: "SECURITY HOLE in namei.c ??"
Next in thread: Hoyer, Harald: "Re: SECURITY HOLE in namei.c ??"
Reply: Hoyer, Harald: "Re: SECURITY HOLE in namei.c ??"