#2120: DebugFS permissions are Wide Open ------------------------------------+--------------------------------------- Reporter: [EMAIL PROTECTED] | Type: defect Status: new | Priority: major Component: ath5k | Version: trunk Keywords: debugfs permissions | Patch_attached: 0 Pending: 0 | ------------------------------------+--------------------------------------- When DebugFS is activated in the kernel, some distro auto-mount it in /sys/kernel/debug and permissions to reset the card, set debug and other stuff are wide open to any users, reset being set 0222 allows anyone to reset the card anytime (and on my computer it crashes the whole thing.)
I would suggest removing any write access to users for all the files created un ath5k/debug.c and even read permissions to user and group to be more secure. -- Ticket URL: <http://madwifi.org/ticket/2120> madwifi.org <http://madwifi.org/> Multiband Atheros Driver for Wireless Fidelity ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Madwifi-tickets mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/madwifi-tickets
