warped security

Albert D. Cahalan (acahalan@cs.uml.edu)
Sun, 27 Oct 2002 03:24:28 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Adam J. Richter: "Patch: linux-2.5.44/include/linux/pci.h - eliminate pci_dev.driver_data"
Previous message: Alex Riesen: "Re: Swap doesn't work"
Next in thread: jw schultz: "Re: warped security"
Reply: jw schultz: "Re: warped security"

As a non-root user:

a. I can't do readlink() on /proc/1/exe ("ls -l /proc/1/exe")
b. I can do "cat /proc/1/maps" to see what files are mapped

That's backwards. If a user can read /proc/1/cmdline, then
they might as well be permitted to readlink() on /proc/1/exe
as well. Reading /proc/1/maps is quite another matter,
exposing more info than the (prohibited) /proc/1/fd/* does.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Adam J. Richter: "Patch: linux-2.5.44/include/linux/pci.h - eliminate pci_dev.driver_data"
Previous message: Alex Riesen: "Re: Swap doesn't work"
Next in thread: jw schultz: "Re: warped security"
Reply: jw schultz: "Re: warped security"