Re: hard links create local DoS vulnerability and security problems

From: Linus Torvalds
Date: Mon Nov 24 2003 - 16:17:41 EST

Next message: Bernt Hansen: "Re: Toshiba ACPI battery status - ACPI errors"
Previous message: Jing Xu: "pci=irqmask= doesn't work"
In reply to: Andy Lutomirski: "Re: hard links create local DoS vulnerability and security problems"
Next in thread: Ricky Beam: "Re: hard links create local DoS vulnerability and security problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 24 Nov 2003, Andy Lutomirski wrote:
>
> Right... but non-privileged users _can't_ delete these extra links, even
> if they notice them from the link count. And non-idiots do make
> security errors -- they just fix them. But in this case, fixing the
> error after the fact may be impossible without root's help.

Just do

chmod ug-s file

and you're done.

If you delete the file first, you'll need roots help, but hey, be careful.

Linus
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Bernt Hansen: "Re: Toshiba ACPI battery status - ACPI errors"
Previous message: Jing Xu: "pci=irqmask= doesn't work"
In reply to: Andy Lutomirski: "Re: hard links create local DoS vulnerability and security problems"
Next in thread: Ricky Beam: "Re: hard links create local DoS vulnerability and security problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]