[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Security hole
> a) the directory containing the file is writable by all (777)
> b) the user has a read access (?!)
Is this the only cases these problems occur?
> It took me a while before I found a couple of mezozoic kernels to be sure
> this problem is not a 1.14.x related problem. It is not (a 1.12 allows the
> same).
1.14's fshandling is the the same as 1.12's.
I think these problems are very easily corrected and they are probably
in MiNT's fs handling. Just pinpoint how the problems occur and look
in the code that handle file removal.
Regards
Sven