Bugtraq mailing list archives

Re: /proc filesystem allows bypassing directory permissions on Linux

From: Pavel Machek <pavel () ucw cz>
Date: Sat, 24 Oct 2009 00:05:44 +0200

On Sat 2009-10-24 01:12:51, Dan Yefimov wrote:

On 24.10.2009 0:35, Matthew Bergin wrote:

doesnt look like the original owner is trying to write to it. Shows it
cant, it had guest write to it via the proc folders bad permissions.
Looks legitimate

Please tell me, who issued 'chmod 0666 unwritable_file'? Was that an
attacker? No, that was the owner of 'unwritable_file', nobody else.
What the 0666 file mode means? It means, that everybody can write to
the file, can't he? So why do you believe that pretension
legitimate?


Original owner did chmod 666... after making sure traditional unix
permissions protect the file. Please look at original mail; it was
subtle but I believe I got it right, and file would not be writable
with /proc unmounted.

                                                                        Pavel
-- 
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html

Current thread:

Re: /proc filesystem allows bypassing directory permissions on Linux, (continued)
- - - Re: /proc filesystem allows bypassing directory permissions on Linux Pavel Machek (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Dan Yefimov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Pavel Machek (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Dan Yefimov (Oct 26)
  - Re: /proc filesystem allows bypassing directory permissions on Linux Derek Martin (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Ansgar Wiechers (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Derek Martin (Oct 28)
    - Re: /proc filesystem allows bypassing directory permissions on Linux CaT (Oct 29)
  - Message not available
    - Re: /proc filesystem allows bypassing directory permissions on Linux Dan Yefimov (Oct 23)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Arturo 'Buanzo' Busleiman (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Pavel Machek (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Dan Yefimov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Pavel Machek (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Dan Yefimov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Tamber Penketh (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Pavel Machek (Oct 27)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Glynn Clements (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Casper . Dik (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Dan Yefimov (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux psz (Oct 26)
    - Re: /proc filesystem allows bypassing directory permissions on Linux Marco Verschuur (Oct 27)

(Thread continues...)