[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Where to report: root fails to edit other users file in sticky bit directory

On Tue, Dec 08, 2020 at 06:40:38PM +0100, tomas@tuxteam.de wrote:
> I lost track a bit about your other hypotheses, but this mode changing
> bit when O_CREAT is given somehow rings a bell.

I googled "linux o_creat sticky" and got this:


  Disallows open of FIFOs or regular files not owned by the user in world
  writable sticky directories, unless the owner is the same as that of the
  directory or the file is opened without the O_CREAT flag. The purpose
  is to make data spoofing attacks harder. This protection can be turned
  on and off separately for FIFOs and regular files via sysctl, just like
  the symlinks/hardlinks protection. This patch is based on Openwall's
  "HARDEN_FIFO" feature by Solar Designer.

I don't know whether that's actually applied to the bullseye kernels,
but it's definitely something to look into.

Reply to: