I wrote earlier: > ... the final leaf cannot be a symlink ... > ... do not know what misdeeds I can do ...
Too little coffee? Yes, the final leaf can be a symlink. This is exploitable when a user can control the resolution of his home directory: when he also owns the directory above (or for NFS mounts owns the machine serving it). Can access objects that were protected with permissions of directories above. Many users are in the habit of having world-accessible subdirectories and files, because their home dir has safe mode 700. I see many /root/bin directories with mode 755, protected by /root being mode 700. Much more fun if /root/bin was mode 777... Please fix. Please issue DSA. Paul Szabo [EMAIL PROTECTED] http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of Sydney Australia -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
