| To: | linux-xfs@xxxxxxxxxxx |
|---|---|
| Subject: | Re: [bug report]: chown(2) implementation in xfs is broken |
| From: | Robert Brockway <robert@xxxxxxxxxxxxxxxxx> |
| Date: | Mon, 7 Jul 2003 01:02:08 -0400 (EDT) |
| In-reply-to: | <3F08C005.3070706@linux-sxs.org> |
| References: | <7kadbrchcp.fsf@greenplant.dot> <3F08C005.3070706@linux-sxs.org> |
| Sender: | linux-xfs-bounce@xxxxxxxxxxx |
This is a security issue if anyone is using unix permissions to restrict execution _from_ a subset of users. This is unusual but I've seen it done. zen:~$ cat ./testfile #!/bin/bash echo "I'm executing!" zen:~$ ls -l testfile ----r-xr-x 1 robert users 46 Jul 7 00:52 testfile* zen:~$ ./testfile bash: ./testfile: Permission denied zen:~$ chown root ./testfile zen:~$ ls -l ./testfile ----r-xr-x 1 root users 35 Jul 7 00:57 ./testfile* zen:~$ ./testfile I'm executing! Rob -- Robert Brockway B.Sc. email: robert@xxxxxxxxxxxxxxxxx ICQ: 104781119 Linux counter project ID #16440 (http://counter.li.org) "The earth is but one country and mankind its citizens" -Baha'u'llah |
| Previous by Date: | TAKE - Make VM_PAGEBUF the same number as in 2.5 kernels, Keith Owens |
|---|---|
| Next by Date: | Re: [bug report]: chown(2) implementation in xfs is broken, Ethan Benson |
| Previous by Thread: | Re: [bug report]: chown(2) implementation in xfs is broken, Net Llama! |
| Next by Thread: | Re: [bug report]: chown(2) implementation in xfs is broken, Ethan Benson |
| Indexes: | [Date] [Thread] [Top] [All Lists] |