'Re: [Full-Disclosure] Re: hard links on Linux create local DoS vulnerability and security problems'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       full-disclosure
Subject:    Re: [Full-Disclosure] Re: hard links on Linux create local DoS vulnerability and security problems
From:       Christopher Allene <cwis () nerim ! fr>
Date:       2003-11-27 1:57:59
[Download RAW message or body]

Jeremiah Cornelius (jeremiah@nur.net) wrote on 2003-11-26 at 14:18:
> And a mandatory system profile in /etc , which aliases ln as 'ln -s' might 
> help.  One for each valid shell.

How would such an approach avoid people calling symlink(2) or
unalias/whatever ?

Seems as good as security through obscurity to me.

-- 
Christopher Allčne

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic