Bugtraq mailing list archives
Re: Silly 'script' hardlink bug
From: Michael Shigorin <mike () lic145 kiev ua>
Date: Thu, 13 Dec 2001 08:58:46 +0200
On Thu, Dec 13, 2001 at 12:02:36AM +0100, Marco van Berkum wrote:
the harddisk. For instance, a malicious user can place a hardlink 'typescript' to /etc/passwd (or any other file) in his home directory. If the root user would execute
...and no sane system will get /etc and /home on the same partition. Still, it's beloved `mitigating factor', not a solution. Just my 2 copecks. -- ---- WBR, Michael Shigorin <mike () altlinux ru> ------ http://visa.chem.univ.kiev.ua/~mike/
Attachment:
_bin
Description: PGP Key 0xB60C9B72.
Attachment:
_bin
Description:
Current thread:
- Silly 'script' hardlink bug Marco van Berkum (Dec 12)
- Re: Silly 'script' hardlink bug Michael Shigorin (Dec 13)