Date: Wed, 7 Apr 1999 16:25:58 -0600 (MDT) From: Drew Eckhardt <drew@plutotech.com> To: dave@dreksys.com, freebsd-questions@freebsd.org Subject: Re: illegal paths Message-ID: <199904072225.QAA44942@dune.plutotech.com> In-Reply-To: <002b01be810b$6447c100$05c809c0@versa>
next in thread | previous in thread | raw e-mail | index | archive | help
In article <002b01be810b$6447c100$05c809c0@versa> you write:
>checking setuid files and devices:
>find: /usr/local/www/clients/pkg/3Com/DSG PR 89-0848-000 Shipment
>Preparation.doc: illegal path
>find: /usr/home/robert/public/Amber's School Stuff/wadr98e.pdf: illegal path
>
>The files seem to be perfectly accessible, so are they really illegal?
No.
>or is the daily check in need of an update to be able to recognize these as
>legitimate file paths?
Perhaps. Historically, /etc/daily did this
find / ! -fstype local -a -prune -o -name cache* -a -type d -print | \
while
read d
do
find $d -a -type f -a -atime +3 -exec rm -f -- {} \;
done
which could be abused by creating directories like this
~/./ .. /tmp/cache
/tmp/cache
or
~/. -name foo -a -exec rm -rf .. -o -name /tmp/cache
Spewage like this would alert one to the problem, although it is wrong.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199904072225.QAA44942>