Date: 10 Apr 1998 13:41:18 +0200 From: Andi Kleen <ak@muc.de> To: Wolfram Schneider <wosch@FreeBSD.ORG> Cc: cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG, cvs-sbin@FreeBSD.ORG, cvs-sys@FreeBSD.ORG Subject: Re: cvs commit: src/sbin/mount mntopts.h mount.8 mount.c src/sys/kern vfs_lookup.c vfs_syscalls.c vfs_vnops.c src/sys/sys mount.h Message-ID: <k2emz5oqe9.fsf@zero.aec.at> In-Reply-To: Wolfram Schneider's message of Wed, 8 Apr 1998 11:32:00 -0700 (PDT) References: <199804081832.LAA04184@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Wolfram Schneider <wosch@FreeBSD.ORG> writes: > wosch 1998/04/08 11:32:00 PDT > > Modified files: > sbin/mount mntopts.h mount.8 mount.c > sys/kern vfs_lookup.c vfs_syscalls.c vfs_vnops.c > sys/sys mount.h > Log: > New mount option nosymfollow. If enabled, the kernel lookup() > function will not follow symbolic links on the mounted > file system and return EACCES (Permission denied). Note that this is not enough alone to prevent /tmp races. A malicious user can still use a named pipe to feed the victim changed data. -Andi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?k2emz5oqe9.fsf>