看板 [ Bugtraq ]
討論串/proc filesystem allows bypassing directory permissions on L
共 44 篇文章
內容預覽: 開啟 | 關閉 | 只限未讀
首頁
上一頁
1
2
3
4
5
6
7
8
9
下一頁
尾頁
#43
Re: /proc filesystem allows bypassing directory permissions on L
推噓0(0推 0噓 0→)留言0則,0人參與, 最新作者marco.時間16年前 (2009/10/31 04:01), 編輯資訊
0
0
2
內容預覽:
Pavel,. Proc does not need to be fixed, because /proc is referring to a file. inode.. And due to the fact that it's being presented in /proc as an fd,
(還有2445個字)
#43
Re: /proc filesystem allows bypassing directory permissions on L
推噓0(0推 0噓 0→)留言0則,0人參與, 最新作者psz.時間16年前 (2009/10/31 04:01), 編輯資訊
0
0
1
內容預覽:
> ... another solution -- allow fcntl() to remove read-only and. > append-only limitations, so that behaviour is at least explicit.. Do not lower secu
(還有182個字)
#42
Re: /proc filesystem allows bypassing directory permissions on L
推噓0(0推 0噓 0→)留言0則,0人參與, 最新作者marco.時間16年前 (2009/10/31 03:32), 編輯資訊
0
0
0
內容預覽:
Jim,. Sorry, but your 'prove' below is wrong!. You are opening the locked down file as root and passing that. fd as input to the nobody process.. So n
(還有2166個字)
#41
Re: /proc filesystem allows bypassing directory permissions on L
推噓0(0推 0噓 0→)留言0則,0人參與, 最新作者marco.時間16年前 (2009/10/31 03:01), 編輯資訊
0
0
0
內容預覽:
Jim,. Your assumption that the same file descriptor is being re-opened is. wrong!. The file descriptor retrieved via /proc is a new one. It is not the
(還有5265個字)
#39
Re: /proc filesystem allows bypassing directory permissions on L
推噓0(0推 0噓 0→)留言0則,0人參與, 最新作者glynn.時間16年前 (2009/10/30 02:01), 編輯資訊
0
0
0
內容預覽:
psz@maths.usyd.edu.au wrote:. > > According to POSIX, if you open the directory with O_SEARCH then openat()> > does not re-check search (+x) permissio
(還有1615個字)
首頁
上一頁
1
2
3
4
5
6
7
8
9
下一頁
尾頁