On Tue, Jun 26, 2001 at 09:53:29AM +0300, Jarno Huuskonen wrote: > On Mon, Jun 25, Pavol Luptak wrote: > > Linux kernels with openwall patch (with restricted links in /tmp) are > > imunne to this type of attack (following symlinks does not work, link > > owner does not match with file's owner). > > The symlink restrictions work only in /tmp (mode 1777) directories, so > making the symlink in your own homedir still works (should work). Yes, the symlink does not have to be in /tmp, but you have to ensure the path to your symlink in your own homedir is enough short to fill in NetBIOS name (about 15 characters). -- _______________________________________________________________________ [[EMAIL PROTECTED]] [http://hq.alert.sk/~wilder] [talker: ttt.sk 5678]
PGP signature- smbd remote file creation vulnerability Michal Zalewski
- Re: smbd remote file creation vulnerability maniac
- Re: smbd remote file creation vulnerability Pavol Luptak
- Re: smbd remote file creation vulnerability Tomek Lipski
- Re: smbd remote file creation vulnerability Jarno Huuskonen
- Re: smbd remote file creation vulnerabi... Pavol Luptak
- Re: smbd remote file creation vuln... Simple Nomad
- Re: smbd remote file creation ... Olaf Kirch
- Re: smbd remote file creat... Simple Nomad
- Re: smbd remote file creation vulnerability Wichert Akkerman
- Re: smbd remote file creation vulnerabi... Michal Zalewski
- Re: smbd remote file creation vulnerabi... Phil Stracchino
- Re: smbd remote file creation vulnerabi... Steve Beattie
- Re: smbd remote file creation vulnerability Joachim Blaabjerg
- Re: smbd remote file creation vulnerabi... Michal Zalewski
- Re: smbd remote file creation vulnerabi... sarnold
