On 07/15/2013 07:32 PM, Richard W.M. Jones wrote:
Why?
Without it, it's possible to exploit certain weaknesses to make /etc/shadow word-readable or worse, for example.
Hard links are fundamentally incompatible with the way we run SELinux, and this change mitigates that issue to some extent.
-- Florian Weimer / Red Hat Product Security Team -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
