Re: /proc filesystem allows bypassing directory permissions on L

看板Bugtraq作者時間16年前 (2009/10/27 07:32), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串24/44 (看更多)
On Oct 23, 2009, at 3:56 PM, Pavel Machek <pavel@ucw.cz> wrote: > Demonstrate how to get access to the file with /proc unmounted and you > have a point. Demonstrate how to get access on anything else then > Linux and you have a point. Otherwise there's a security hole. If the directory is mounted via NFS or is exported there are several ways...so software written to assume directory permissions are sufficent to protect users from other unpriveliged users is broken in general. Even if it is usually secure enough on non-Linux. It is not always.
更多 jmaslak. 的文章
文章代碼(AID): #1AvZ5onm (Bugtraq)
討論串 (同標題文章)
完整討論串 (本文為第 24 之 44 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共44篇)
更多 jmaslak. 的文章
文章代碼(AID): #1AvZ5onm (Bugtraq)