Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > muc.lists.netbsd.tech.security > #243

Re: Hard link creation witout write access

From Martin Husemann <martin@duskware.de>
Newsgroups muc.lists.netbsd.tech.security
Subject Re: Hard link creation witout write access
Date 2023-09-07 15:20 +0200
Organization Newsgate at muc.de e.V.
Message-ID <20230907132017.GA16177@mail.duskware.de> (permalink)
References <454692df-41e0-5a86-e099-a869d5b8e61e@SDF.ORG>

Show all headers | View raw

On Thu, Sep 07, 2023 at 12:20:37PM +0000, RVP wrote:
> Then you can make private copies of setuid binaries which you can exploit
> at your leisure--even after the sysadmin's installed a new version. :)

Maybe we could add another knob: hardlink_check_suid, which is like the
other two combined but only for binaries with one of the s bits set,
and then make that default to on.

Martin

--
Posted automagically by a mail2news gateway at muc.de e.V.
Please direct questions, flames, donations, etc. to news-admin@muc.de

Back to muc.lists.netbsd.tech.security | Previous | NextPrevious in thread | Next in thread | Find similar

Thread

Re: Hard link creation witout write access RVP <rvp@SDF.ORG> - 2023-09-07 12:20 +0000
  Re: Hard link creation witout write access Martin Husemann <martin@duskware.de> - 2023-09-07 15:20 +0200
  Re: Hard link creation witout write access RVP <rvp@SDF.ORG> - 2023-09-07 22:58 +0000

csiph-web