Hello Ben,
Ben Hutchings wrote:
You seem to be a bit confused about this vulnerability. /bin/bash is of
course not suid-root, only owned by root.
You're right. To correct this: It is a big problem for suid-root binaries, but even a
problem for non-suid-root-binaries like "/bin/bash" - if you
On Sun, 2011-01-09 at 17:51 +0100, Maximilian Gaukler wrote:
> Package: linux-2.6
> Severity: wishlist
> Tags: patch
>
> An indirect security problem in many linux systems is that a user can
> generate hardlinks to files that he may not write. I suggest adding a
> patch [1] to Debians kernel which
Package: linux-2.6
Severity: wishlist
Tags: patch
An indirect security problem in many linux systems is that a user can generate hardlinks
to files that he may not write. I suggest adding a patch [1] to Debians kernel which adds
a sysctl configuration option to forbid such hardlinks. This optio
3 matches
Mail list logo
