On Thursday 10 November 2005 20:30, Paul Eggleton wrote:
> Blaisorblade wrote on Friday, 11 November 2005 4:19 a.m.:
> > How can anybody have a program "setuid root" there unless he has root
> > access first?
>
> If you can trick root or a program running as root into creating files
> or changing p
Blaisorblade wrote on Friday, 11 November 2005 4:19 a.m.:
> How can anybody have a program "setuid root" there unless he has root
> access first?
If you can trick root or a program running as root into creating files
or changing permissions for you, it's not that hard (eg. symlink
attack). Grante
On Wednesday 09 November 2005 23:05, Gianni wrote:
> Hello!
>
> I'm using Fedora 2 filesystem and all the directories uses a unique root
> partition ( / )
> The problem is that in /tmp partition of my virtual server, I'm always find
> some kind of script kiddie.
> And I can't protect this directory
