oss-sec mailing list archives

Re: Untrusted fs and invalid filenames

From: Steve Grubb <sgrubb () redhat com>
Date: Mon, 14 Mar 2011 09:44:10 -0400

On Monday, March 14, 2011 08:56:45 am Dan Rosenberg wrote:

 As I see it, there are
four scenarios where this might matter:


What about repudiation?

5. Attacker constructs drive image such that an unexpected access of a file is made and 
recorded by the audit system showing someone else doing it. Consider remote logging 
and the attacker having no way to erase access.

-Steve

Current thread:

Untrusted fs and invalid filenames Vasiliy Kulikov (Mar 12)
- Re: Untrusted fs and invalid filenames Steve Grubb (Mar 13)
- Re: Untrusted fs and invalid filenames Eitan Adler (Mar 13)
- Re: Untrusted fs and invalid filenames Stephan Mueller (Mar 14)
  - Re: Untrusted fs and invalid filenames Dan Rosenberg (Mar 14)
    - Re: Untrusted fs and invalid filenames Stephan Mueller (Mar 14)
    - Re: Untrusted fs and invalid filenames Steve Grubb (Mar 14)
    - Re: Untrusted fs and invalid filenames Vasiliy Kulikov (Mar 14)
  - Re: Untrusted fs and invalid filenames Ludwig Nussel (Mar 14)
    - Re: Untrusted fs and invalid filenames Steve Grubb (Mar 14)