On 12/20/2017 04:43 PM, Michael Orlitzky wrote: > > For this to work, you'll need to ensure that your kernel doesn't have > any nonstandard hardening features enabled: > > $ sudo sysctl --write fs.protected_symlinks=0 > > (Most distributions patch the kernel to enable that feature by default.) >
This is a red herring, a relic of some previous version of the exploit. The one I gave should work regardless of this hardening feature, in most directories.
