tech-security archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Hard link creation witout write access

To: RVP <rvp%SDF.ORG@localhost>
Subject: Re: Hard link creation witout write access
From: Martin Husemann <martin%duskware.de@localhost>
Date: Thu, 7 Sep 2023 15:20:17 +0200

On Thu, Sep 07, 2023 at 12:20:37PM +0000, RVP wrote:
> Then you can make private copies of setuid binaries which you can exploit
> at your leisure--even after the sysadmin's installed a new version. :)

Maybe we could add another knob: hardlink_check_suid, which is like the
other two combined but only for binaries with one of the s bits set,
and then make that default to on.

Martin

Follow-Ups:
- Re: Hard link creation witout write access
  - From: RVP

References:
- Re: Hard link creation witout write access
  - From: RVP

Prev by Date: Re: Hard link creation witout write access
Next by Date: Re: Hard link creation witout write access
Previous by Thread: Re: Hard link creation witout write access
Next by Thread: Re: Hard link creation witout write access
Indexes:

Home | Main Index | Thread Index | Old Index