[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: chown32() weirdness

To: Walt H <waltabbyh@mindspring.com>
Subject: Re: chown32() weirdness
From: Walt H <waltabbyh@mindspring.com>
Date: Mon, 18 Feb 2002 10:23:47 -0800
Cc: Wessel Dankers <wsl@fruit.eu.org>, linux-xfs@oss.sgi.com
References: <Pine.LNX.4.33.0202181038540.17806-100000@chuckle.americas.sgi.com> <Pine.LNX.4.33.0202181050220.17806-100000@chuckle.americas.sgi.com> <20020218180643.O22191@fruit.eu.org> <3C714149.9060506@mindspring.com>
Sender: owner-linux-xfs@oss.sgi.com
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.8+) Gecko/20020212

Just checked it. No problem with setuid exploit. Permissions are 
stripped on chown, and you're not allowed to setuid afterwards.

-Walt

Walt H wrote:
> I was more afraid of the setuid, possibe local root exploit. Maybe that 
> would be caught?
> 
> -Walt
> 
> 
> Wessel Dankers wrote:
> 
>> On 2002-02-18 11:02:51-0600, Eric Sandeen wrote:
>>
>>> Ok, I guess this is a difference between Irix and Linux...
>>>
>>
>> Hm. That means I can just push someone over their quota by chowning a big
>> file to them (especially if it's in a directory they do not have access
>> to). That doesn't sound right.
>>
>> Regards,
>>
>> -- 
>> Wessel Dankers <wsl@fruit.eu.org>
>>
>> Some one needed the powerstrip, so they pulled the switch plug.
>>
>>
> 
>

References:
- Re: chown32() weirdness
  - From: Eric Sandeen <sandeen@sgi.com>
- Re: chown32() weirdness
  - From: Eric Sandeen <sandeen@sgi.com>
- Re: chown32() weirdness
  - From: Wessel Dankers <wsl@fruit.eu.org>
- Re: chown32() weirdness
  - From: Walt H <waltabbyh@mindspring.com>

Prev by Date: Re: chown32() weirdness
Next by Date: TAKE - Restrict chown
Previous by thread: Re: chown32() weirdness
Next by thread: Re: chown32() weirdness
Index(es):
- Date
- Thread