Vulnerability Development mailing list archives

Re: spying (deleted) file entries in other users' directories

From: Valdis.Kletnieks () vt edu
Date: Tue, 25 Jun 2002 10:47:11 -0400

On Mon, 24 Jun 2002 11:47:16 +0200, "D.C. van Moolenbroek" said:

Note that on my system, reading doesn't work on /tmp ("input error: Invalid
argument"); it seems to work on all other directories though. Generally I
suppose it's a bad idea to put something sensitive in a filename, but what
do the other bytes represent, that show up in the hexdump?


Presumably, they are the inode number - remember that a directory is just
a list of (name)(inode number) pairs (overlooking things like ReiserFS or
IBM's JFS2 that doen't store directories as a linear list but as a btree or
other structure - in those cases the other bytes may be directory metadata).
-- 
                                Valdis Kletnieks
                                Computer Systems Senior Engineer
                                Virginia Tech

Attachment: _bin
Description:

Current thread:

spying (deleted) file entries in other users' directories FozZy (Jun 22)
- Re: spying (deleted) file entries in other users' directories bad bob (Jun 22)
  - Re: spying (deleted) file entries in other users' directories FozZy (Jun 23)
    - Re: spying (deleted) file entries in other users' directories bad bob (Jun 23)
- Re: spying (deleted) file entries in other users' directories D.C. van Moolenbroek (Jun 24)
  - Re: spying (deleted) file entries in other users' directories Valdis . Kletnieks (Jun 26)
  - Re: spying (deleted) file entries in other users' directories Robert Bihlmeyer (Jun 26)
  - RE: spying (deleted) file entries in other users' directories Maximiliano Pérez (Jun 28)