Bugtraq mailing list archives

Re: Silly 'script' hardlink bug

From: Michael Shigorin <mike () lic145 kiev ua>
Date: Thu, 13 Dec 2001 08:58:46 +0200

On Thu, Dec 13, 2001 at 12:02:36AM +0100, Marco van Berkum wrote:

the harddisk. For instance, a malicious user can place
a hardlink 'typescript' to /etc/passwd (or any other file)
in his home directory. If the root user would execute

...and no sane system will get /etc and /home on the same
partition.  Still, it's beloved `mitigating factor', not a
solution.  Just my 2 copecks.

-- 
 ---- WBR, Michael Shigorin <mike () altlinux ru>
  ------ http://visa.chem.univ.kiev.ua/~mike/

Attachment: _bin
Description: PGP Key 0xB60C9B72.

Attachment: _bin
Description:

Current thread:

Silly 'script' hardlink bug Marco van Berkum (Dec 12)
- Re: Silly 'script' hardlink bug Michael Shigorin (Dec 13)