From owner-freebsd-security Thu Mar 18 4:45:47 1999 Delivered-To: freebsd-security@freebsd.org Received: from aniwa.sky (p40-max5.wlg.ihug.co.nz [202.49.241.40]) by hub.freebsd.org (Postfix) with ESMTP id BCACD151DB; Thu, 18 Mar 1999 04:45:11 -0800 (PST) (envelope-from andrew@squiz.co.nz) Received: from aniwa.sky (localhost [127.0.0.1]) by aniwa.sky (8.9.1a/8.9.1) with ESMTP id BAA22599; Fri, 19 Mar 1999 01:43:40 +1300 (NZDT) Message-Id: <199903181243.BAA22599@aniwa.sky> X-Mailer: exmh version 2.0.2 2/24/98 To: "Daniel C. Sobral" Cc: Dmitry Valdov , freebsd-current@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: disk quota overriding In-reply-to: Your message of "Thu, 18 Mar 1999 03:03:06 +0900." <36EFEE5A.DE68FF5F@newsguy.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Fri, 19 Mar 1999 01:43:39 +1300 From: Andrew McNaughton Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Dmitry Valdov wrote: > > I think that there is only one way to fix it - it's to disable making > > *hard*links to directory with mode 1777. I don't use quotas, and don't know a great deal about how they operate, but I think there's another disk filling DOS involving hard links lurking which the above measure would also solve. If a user starts making hard links to (large and growing) log files, with the new links being placed in /var/mail, then presumably those log files will not be deleted correctly as they are rolled over, and will quickly accumulate. This could not bring down a system as rapidly as growing the publicly writable directory with lots of links, but it is not desirable system behaviour. Andrew McNaughton -- ----------- Andrew McNaughton andrew@squiz.co.nz http://www.newsroom.co.nz/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message