On 13.08.2013 14:20, Paul Slootman wrote: > On Tue 13 Aug 2013, Matthias Schniedermeyer wrote: > > > > BUT there is no direct vulnerability in that, only processes after that > > (like backup/rsync) can make a vulnerability out of it. > > ... which is what I already wrote.
I read your sentence differently: > If he can make a HARD link to the shadow file, then he can already > read it - and worse. My understanding of your sentence says: The ability to hardlink, means that anyone can read any file they can make a hardlink to. Having access to the directory entry is not the same as having access to the inode. User/group/permission is on the inode NOT the directory-entry. -- Matthias -- Please use reply-all for most replies to avoid omitting the mailing list. To unsubscribe or change options: https://lists.samba.org/mailman/listinfo/rsync Before posting, read: http://www.catb.org/~esr/faqs/smart-questions.html
