Re: [RFC/PATCH] revoke/frevoke system calls V2

From: Pavel Machek
Date: Tue Aug 08 2006 - 08:55:51 EST

Next message: Jean Delvare: "Re: [PATCH] OMAP: I2C driver for TI OMAP boards #3"
Previous message: Komal Shah: "Re: [PATCH] OMAP: I2C driver for TI OMAP boards #3"
In reply to: Pekka Enberg: "Re: [RFC/PATCH] revoke/frevoke system calls V2"
Next in thread: Alan Cox: "Re: [RFC/PATCH] revoke/frevoke system calls V2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi!

> > it works for regular files and even goes as far as destroying
> > all mappings of the file from all processes (even root processes).
> > IMVHO this is a disaster from a security and reliability point
> > of view.
>
> Actually its no different than if it didn't. The two are identical
> behaviours.
>
> To use revoke() I must own the file
> If I own the file I can make it a symlink to a pty/tty pair
> I can revoke a pty/tty pair

How can you symlink opened file?

--
Thanks for all the (sleeping) penguins.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jean Delvare: "Re: [PATCH] OMAP: I2C driver for TI OMAP boards #3"
Previous message: Komal Shah: "Re: [PATCH] OMAP: I2C driver for TI OMAP boards #3"
In reply to: Pekka Enberg: "Re: [RFC/PATCH] revoke/frevoke system calls V2"
Next in thread: Alan Cox: "Re: [RFC/PATCH] revoke/frevoke system calls V2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]