Re: dynamic /dev security hole?

From: Alan Cox
Date: Mon Aug 09 2004 - 11:04:28 EST

Next message: Alan Cox: "Re: [PATCH] implement in-kernel keys & keyring management"
Previous message: brking: "[PATCH 1/2] blk_resize_tags_fix"
In reply to: Michael Buesch: "Re: [RFC, PATCH] sys_revoke(), just a try. (was: Re: dynamic /dev security hole?)"
Next in thread: Eric Lammerts: "Re: dynamic /dev security hole?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Llu, 2004-08-09 at 05:40, Eric Lammerts wrote:
> Just an idea for a fix for this problem: If udev would change the
> permissions to 000 and ownership to root.root just before it unlinks
> the device node, the copy would become useless.

Unfortunately not the whole story. The permissions are checked at open
time not on read/write/ioctl so once I have the device opened you
lose. That means you may have to fix the permissions and ownership
before trying to unload the device. The unload will fail if it is still
busy but if not then nobody will be able to open the dev node and
whatever file it now points to.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: [PATCH] implement in-kernel keys & keyring management"
Previous message: brking: "[PATCH 1/2] blk_resize_tags_fix"
In reply to: Michael Buesch: "Re: [RFC, PATCH] sys_revoke(), just a try. (was: Re: dynamic /dev security hole?)"
Next in thread: Eric Lammerts: "Re: dynamic /dev security hole?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]