[17009] in bugtraq
Re: rcp file transfer hole (was: scp file transfer hole)
daemon@ATHENA.MIT.EDU (Jan Niehusmann)
Tue Oct 3 01:00:59 2000
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
protocol="application/pgp-signature"; boundary="5mCyUwZo2JvN/JJP"
Content-Disposition: inline
Message-Id: <20001002190646.A17974@gondor.com>
Date: Mon, 2 Oct 2000 19:06:46 +0200
Reply-To: Jan Niehusmann <jan@GONDOR.COM>
From: Jan Niehusmann <jan@GONDOR.COM>
X-To: Markus Friedl <Markus.Friedl@INFORMATIK.UNI-ERLANGEN.DE>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <20001002130658.A5228@faui02.informatik.uni-erlangen.de>; from
Markus.Friedl@INFORMATIK.UNI-ERLANGEN.DE on Mon, Oct 02,
2000 at 01:06:58PM +0200
--5mCyUwZo2JvN/JJP
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Mon, Oct 02, 2000 at 01:06:58PM +0200, Markus Friedl wrote:
> how should this be fixed in a reasonable way? i don't think questions
> similar to "do you really want to create /bla/bla/bla? (yes/no)" would
> be useful.
scp could parse the arguments locally. I can only see three cases:
1) scp is called with two file arguments:
scp remote:/x/y/file /local/file
in this case, scp should deny any access to files other than /local/file
2) scp is called with one file and one directory:
scp remote:/x/y/file /local/dir/
in this case, scp should only allow writes to /local/dir/file, and especial=
ly
not to files in subdirectories of /local/dir/.
3) scp is called with -r and two directories:
scp -r remote:/x/y/dir/ /local/dir/
in this case, scp has to allow writes to /local/dir/* and subdirectories,
but the user should expect that, so its probably ok.=20
(I said scp, rcp is the same, of course)
Jan
--5mCyUwZo2JvN/JJP
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.2 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE52MCm3Q514w2h0lARAjn6AJoDONA3rB5VemXZ21lN6pg0b5cwLQCbBQQw
9geVd6SmxYYxTo1DMYQffKc=
=6NFd
-----END PGP SIGNATURE-----
--5mCyUwZo2JvN/JJP--
