Ideas for changes to Unix filesystem
Richard M. Mathews
richard at locus.com
Thu Feb 7 14:21:16 AEST 1991
rbj at uunet.UU.NET (Root Boy Jim) writes:
>Many people have complained about "security problems".
>I don't see any. If you have an fd, you have the data, so you
>can copy it to your own file anyway. An flink is just faster.
The question isn't whether you can write your own copy; it is whether you
can write to the "system's" copy. Say the "system" has a file with mode
666 which is protected only by directory permissions. Certain setuid
or setgid programs are supplied which provide controlled access to the
file. A user supplied program can be invoked with the file open for
read. Only "system" supplied programs can access the file for write.
With flink(), the user could create a name for the file, reopen it for
write, and screw up the whole world.
("system" here refers not necessarily to the Unix system, but to whomever
or whatever is in charge of some application package)
Richard M. Mathews D efend
richard at locus.com E stonian-Latvian-Lithuanian
lcc!richard at seas.ucla.edu I ndependence
...!{uunet|ucla-se|turnkey}!lcc!richard
More information about the Comp.unix.internals
mailing list