Safer path lookup
Posted May 26, 2011 7:23 UTC (Thu) by epa
Parent article: Re: [PATCH 3/5] v2 seccomp_filters: Enable ftrace-based system call filtering
a few new flags to
pathname lookup that say "don't follow symlinks" and "don't follow
Yes please. This would be a great simplification of a lot of messy userspace code.
I'd even go so far as to say that in server code, these flags should be the default set by your programming language's standard library. I would rather have to set a special flag if I did want to allow ../ and symlinks in paths, and have the default be to fail safely. That question of defaults is not a kernel issue, however.
to post comments)