[1755] in Kerberos-V5-bugs
Re: cache file bug
daemon@ATHENA.MIT.EDU (Theodore Ts'o)
Fri Dec 22 15:51:15 1995
Date: Fri, 22 Dec 1995 15:51:10 -0500
From: Theodore Ts'o <tytso@MIT.EDU>
To: Andrew Gross <grossa@SDSC.EDU>
Cc: krb5-bugs@MIT.EDU
In-Reply-To: Andrew Gross's message of Fri, 22 Dec 95 11:50:52 PST,
<9512221950.AA24497@galt.sdsc.edu>
From: Andrew Gross <grossa@SDSC.EDU>
Date: Fri, 22 Dec 95 11:50:52 PST
How about lstat-int the cache file and balking on a symlink?
Or at least notifying the user that there is a symlink and what it
points to and then asking to continue?
No good; there's still a race condition window between the lstat() and
the symlink. (Although if the attack lost the race, the user would be
notified in an obvious way.)
As far as notifying the user that there is a symlink, that's something
which the top level kinit program could do, but which I wouldn't want to
put into library routine --- library routines shouldn't be doing user
I/O, for the most part.
- Ted
