Jeremy Kister on 18 Aug 2010 16:44:12 -0700


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] YAFSD


On 8/18/2010 7:29 PM, Jason Stelzer wrote:
In the scenario that you pasted, the same user did everything, which

I did not try to imply that an unprivileged user did anything besides make the symlink from /tmp/target to /etc

the only unprivileged action needed was described in the paragraph explaining the user creating the link, hence the link being owned by "user"

the copy-and-paste was all with root and entered on purpose (but perhaps not realizing that the /tmp/target was an existing symlink to an important directory).


executed, then it would play out something like this:

this has no relevance to the problem i'm trying to describe, as stated above.


perhaps my original message was unclear. perhaps you (and others) are skimming it too quickly or not interpreting it in the way i'd want. in either case, i've warned the list against blindly mounting things in /tmp, and that's all i wanted to do. all done.


--

Jeremy Kister
http://jeremy.kister.net./
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug