Subject: Re: Random PID'
To: Mike Pelley <mike@pelley.com>
From: Jared D. McNeill <jmcneill@invisible.yi.org>
List: current-users
Date: 11/10/2000 16:54:58
On Fri, 10 Nov 2000, Mike Pelley wrote:
> > >What about a way of disabling symlinks on a mounted partition altogether?
> > >Or will this break too many programs to be useful?
> >
> > I can usually do the same attack with hard links.
>
> Assuming /tmp is a separate partition (as was implied by the original
> comment), you would not be able to create a hard link to something on /tmp
> from a target file in /etc, /usr, etc., which I believe is the primary
> motivation for such an attack (although I could be mistaken).
Correct, and if /tmp wasn't a separate partition, you most likely wouldn't
be mounting / with the nosymfollow option.
Jared