On Tue, 22 Dec 2009 16:04:24 +0200, Harhalakis Stefanos wrote: > > $ ls -ld / > > drwxrwxrwt 7 root root 160 2009-12-18 21:40 . > > This does not seem easy to exploit because of the sticky bit. No?
You're right. The problem is less serious because of the sticky bit. One way that you could still exploit it though would be to create trojan directories in the tmpfs branch directly, like /fsprotect/tmp/usr . Thanks for creating this tool, by the way. I'm glad someone spent the time to figure out the gymnastics of bind-mounting and moving directories around to get it working correctly and cleanly inside the initramfs. -Phil -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
