Bug#609455: linux-2.6: block hardlinks to non-accessible sources

To: Ben Hutchings <ben@decadent.org.uk>, 609455@bugs.debian.org
Subject: Bug#609455: linux-2.6: block hardlinks to non-accessible sources
From: Maximilian Gaukler <development@maxgaukler.de>
Date: Sun, 09 Jan 2011 22:30:55 +0100
Message-id: <[🔎] 4D2A290F.8080906@maxgaukler.de>
Reply-to: Maximilian Gaukler <development@maxgaukler.de>, 609455@bugs.debian.org
In-reply-to: <[🔎] 1294597945.2823.14.camel@localhost>
References: <[🔎] 4D29E78E.10105@maxgaukler.de> <[🔎] 1294597945.2823.14.camel@localhost>

Hello Ben,

Ben Hutchings wrote:

You seem to be a bit confused about this vulnerability.  /bin/bash is of
course not suid-root, only owned by root.


You're right. To correct this: It is a big problem for suid-root binaries, but even a problem for non-suid-root-binaries like "/bin/bash" - if you can write to /bin/bash after fooling the admin to run chown on your home, you own the system as soon as root logs in or some shell script is started as root.

Thanks for the information about POSIX.

Many distributions apply many patches that are not upstream.  We
generally try to avoid doing that in the standard kernel images.

Do you see any way to deny the described attacks (flooding /tmp, hardlinking insecure suid binaries) without this patch?

However, we may add kernel images with the 'grsec' featureset for the
next release (wheezy).

That sounds good.

Thanks

Max

Reply to:

References:
- Bug#609455: linux-2.6: block hardlinks to non-accessible sources
  - From: Maximilian Gaukler <development@maxgaukler.de>
- Bug#609455: linux-2.6: block hardlinks to non-accessible sources
  - From: Ben Hutchings <ben@decadent.org.uk>

Prev by Date: Uploading linux-2.6 (2.6.32-30)
Next by Date: Bug#607242: [PATCH v2] psmouse: mitigate failing-mouse symptoms
Previous by thread: Bug#609455: linux-2.6: block hardlinks to non-accessible sources
Next by thread: Uploading linux-2.6 (2.6.32-30)
Index(es):
- Date
- Thread