[21240] in bugtraq
Re: smbd remote file creation vulnerability
daemon@ATHENA.MIT.EDU (Phil Stracchino)
Thu Jun 28 16:05:19 2001
Date: Wed, 27 Jun 2001 16:35:09 -0700
From: Phil Stracchino <alaric@babcom.com>
To: bugtraq@securityfocus.com
Cc: Pavol Luptak <wilder@hq.alert.sk>
Message-ID: <20010627163509.A15465@babylon5.babcom.com>
Mail-Followup-To: bugtraq@securityfocus.com,
Pavol Luptak <wilder@hq.alert.sk>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20010627004252.A6280@wiggy.net>; from wichert@wiggy.net on Wed, Jun 27, 2001 at 12:42:52AM +0200
On Wed, Jun 27, 2001 at 12:42:52AM +0200, Wichert Akkerman wrote:
> Previously Pavol Luptak wrote:
> > Linux kernels with openwall patch (with restricted links in /tmp) are
> > imunne to this type of attack (following symlinks does not work, link
> > owner does not match with file's owner).
>
> If symlink don't work you can still use a hardlink though.
Which is yet another reason for making /tmp a separate filesystem.
--
Linux Now! ..........Because friends don't let friends use Microsoft.
phil stracchino -- the renaissance man -- mystic zen biker geek
alaric@babcom.com halmayne@sourceforge.net
2000 CBR929RR, 1991 VFR750F3 (foully murdered), 1986 VF500F (sold)
