lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <41A42143.7070908@fmi.uni-sofia.bg>
Date: Wed, 24 Nov 2004 07:50:59 +0200
From: Ognyan Kulev <ogi@....uni-sofia.bg>
To: James Youngman <bugtraq@...ession.spiral-arm.org>
Cc: srevilak@...akeasy.net, parimiv@...haw.com,
	Martin Buchholz <Martin.Buchholz@....COM>,
	levon@...ementarian.org, bugtraq@...urityfocus.com, bug-findutils@....org
Subject: Re: Changes to the filesystem while find is running - comments?


James Youngman wrote:
> On Mon, Nov 22, 2004 at 06:05:43PM -0800, Martin Buchholz wrote:
>>Unlike replacing directories with symlinks, where the malicious
>>possibilities are evident, I don't see any malicious possibilities
>>arising out of mounted filesystems replaced by other filesystems.
> 
> Is there a consensus agreeing with this point of view?  If so, that
> would make the implementsation much simpler...

This is not valid in GNU Hurd where it's natural translators to be set up on 
file/directory by ordinary user.  (Translators are user-space programs that 
handle filesystem requests.  st_dev/st_fsid is translator's PID and 
"automounted" filesystems are called passive translators.)

Regards,
ogi

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ