Re: hard links create local DoS vulnerability and security problems

From: Gianni Tedesco
Date: Tue Nov 25 2003 - 06:32:52 EST

Next message: Michal Wronski: "[PATCH] 1/2 POSIX message queues"
Previous message: Arjan van de Ven: "Re: hyperthreading"
In reply to: Bill Davidsen: "Re: hard links create local DoS vulnerability and security problems"
Next in thread: Andy Lutomirski: "Re: hard links create local DoS vulnerability and security problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2003-11-24 at 17:36, Jakob Lell wrote:
> To solve the problem, the kernel shouldn't allow users to create hard links to
> files belonging to someone else.

chmod(fn, 0);
truncate(fn, 0);
unlink(fn);

then just the inode remains.

--
// Gianni Tedesco (gianni at scaramanga dot co dot uk)
lynx --source www.scaramanga.co.uk/scaramanga.asc | gpg --import
8646BE7D: 6D9F 2287 870E A2C9 8F60 3A3C 91B5 7669 8646 BE7D

Attachment: signature.asc
Description: This is a digitally signed message part

Next message: Michal Wronski: "[PATCH] 1/2 POSIX message queues"
Previous message: Arjan van de Ven: "Re: hyperthreading"
In reply to: Bill Davidsen: "Re: hard links create local DoS vulnerability and security problems"
Next in thread: Andy Lutomirski: "Re: hard links create local DoS vulnerability and security problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]