oss-sec mailing list archives
Re: Untrusted fs and invalid filenames
From: Steve Grubb <sgrubb () redhat com>
Date: Mon, 14 Mar 2011 09:44:10 -0400
On Monday, March 14, 2011 08:56:45 am Dan Rosenberg wrote:
As I see it, there are four scenarios where this might matter:
What about repudiation? 5. Attacker constructs drive image such that an unexpected access of a file is made and recorded by the audit system showing someone else doing it. Consider remote logging and the attacker having no way to erase access. -Steve
Current thread:
- Untrusted fs and invalid filenames Vasiliy Kulikov (Mar 12)
- Re: Untrusted fs and invalid filenames Steve Grubb (Mar 13)
- Re: Untrusted fs and invalid filenames Eitan Adler (Mar 13)
- Re: Untrusted fs and invalid filenames Stephan Mueller (Mar 14)
- Re: Untrusted fs and invalid filenames Dan Rosenberg (Mar 14)
- Re: Untrusted fs and invalid filenames Stephan Mueller (Mar 14)
- Re: Untrusted fs and invalid filenames Steve Grubb (Mar 14)
- Re: Untrusted fs and invalid filenames Vasiliy Kulikov (Mar 14)
- Re: Untrusted fs and invalid filenames Ludwig Nussel (Mar 14)
- Re: Untrusted fs and invalid filenames Steve Grubb (Mar 14)
- Re: Untrusted fs and invalid filenames Dan Rosenberg (Mar 14)