Date: Fri, 18 Oct 1996 22:39:59 +0200 (MET DST) From: J Wunsch <j@uriah.heep.sax.de> To: freebsd-hackers@freebsd.org (FreeBSD hackers) Subject: Re: fix for symlinks in /tmp (fwd) FYI Message-ID: <199610182039.WAA28539@uriah.heep.sax.de> In-Reply-To: <199610181859.UAA14544@spooky.lss.cp.philips.com> from Guido van Rooij at "Oct 18, 96 08:59:09 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
As Guido van Rooij wrote: > I have created a patch for Linux that fixes the generic problem of > security holes due to symlinks being used in /tmp. > > The patch changes the kernels namei code so that symlinks will not be > followed if: > > 1) the t bit is set on the directory containing the symlink > and > 2) the euid of the process does not match the owner of the symlink. 4.4BSD's symlinks don't have owners at all. -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199610182039.WAA28539>