BugTraq
hard links on Linux create local DoS vulnerability and security problems Nov 24 2003 04:36PM
Jakob Lell (jlell JakobLell de) (4 replies)
Re: [Full-Disclosure] hard links on Linux create local DoS vulnerability and security problems Nov 24 2003 06:58PM
Michal Zalewski (lcamtuf ghettot org)
Re: hard links on Linux create local DoS vulnerability and security problems Nov 24 2003 06:25PM
Bruno Lustosa (bruno lustosa net) (1 replies)
Re: hard links on Linux create local DoS vulnerability and security problems Nov 24 2003 06:57PM
David F. Skoll (dfs roaringpenguin com)
On Mon, 24 Nov 2003, Bruno Lustosa wrote:

> Just checked this on 2.6.0-test9, and it will not work.

[Keeping SUID bits by making a hard link.]

This is true even on ancient version of Linux and UNIX.

A hard link just contains a name and an inode number. The permissions
are stored in the inode, so all hard links share the same permissions,
owner, etc.

--
David.

[ reply ]
Re: hard links on Linux create local DoS vulnerability and security problems Nov 24 2003 06:20PM
Brian Bennett (bahamat digitalelf net)
Re: hard links on Linux create local DoS vulnerability and security problems Nov 24 2003 06:17PM
Steven Leikeim (steven enel ucalgary ca)


 

Privacy Statement
Copyright 2010, SecurityFocus