puffs ignores filesystem permissions

To: tech-security%netbsd.org@localhost
Subject: puffs ignores filesystem permissions
From: Geert Hendrickx <ghen%telenet.be@localhost>
Date: Mon, 20 Dec 2010 10:35:37 +0100

Hi,

it seems puffs, our userspace filesystem framework, has a serious
security issue: it is completely ignoring filesystem permissions!

This is on NetBSD 5.1:

  # rump_tmpfs tmpfs /mnt
  [ doesn't return, so switching to another terminal ]

  # cp /etc/fstab /mnt
  # chmod 700 /mnt
  # chmod 600 /mnt/fstab

--> now as a regular user:

  % cat /mnt/fstab
  [ works ]

I can reproduce this issue with all puffs, rump and fuse filesystems
(initially noticed it while testing fuse-encfs from pkgsrc).

WTF?

        Geert


-- 
Geert Hendrickx  -=-  ghen%telenet.be@localhost  -=-  PGP: 0xC4BB9E9F
This e-mail was composed using 100% recycled spam messages!

Attachment: pgpaOgGQsaFNW.pgp
Description: PGP signature

Follow-Ups:
- Re: puffs ignores filesystem permissions
  - From: Antti Kantee

Prev by Date: NetBSD Security Advisory 2010-013: UDP6 Option Parsing local Denial of Service
Next by Date: Re: puffs ignores filesystem permissions
Previous by Thread: NetBSD Security Advisory 2010-013: UDP6 Option Parsing local Denial of Service
Next by Thread: Re: puffs ignores filesystem permissions
Indexes:

Home | Main Index | Thread Index | Old Index