LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

/proc and directory permissions

/proc and directory permissions

Posted Oct 29, 2009 14:52 UTC (Thu) by RobSeace (subscriber, #4435)
Parent article: /proc and directory permissions

> While that is true, Machek's example looked for that case by checking the
> link count on the file after the directory permissions had been changed.
> The hardlink scenario would be detected at that point.

Well, in that case, you can detect this new scenario with a simple "lsof"...
If they can be expected to check the link count as defense, surely they can
also check for already open FDs for files that once were perfectly accessible
when they change the perms to render them inaccessible...

Also, while changing the perms on the directory, why not go the further step
of changing the file perms as well? It would seem a logical and reasonable
thing to do...

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds