From owner-freebsd-security@FreeBSD.ORG Mon Jan 15 22:01:29 2007 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id DFB5216A47E for ; Mon, 15 Jan 2007 22:01:29 +0000 (UTC) (envelope-from pjd@garage.freebsd.pl) Received: from mail.garage.freebsd.pl (arm132.internetdsl.tpnet.pl [83.17.198.132]) by mx1.freebsd.org (Postfix) with ESMTP id 82EB013C4CC for ; Mon, 15 Jan 2007 22:01:27 +0000 (UTC) (envelope-from pjd@garage.freebsd.pl) Received: by mail.garage.freebsd.pl (Postfix, from userid 65534) id 0C75F46DA5; Mon, 15 Jan 2007 23:01:26 +0100 (CET) Received: from localhost (154.81.datacomsa.pl [195.34.81.154]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.garage.freebsd.pl (Postfix) with ESMTP id C00B5487F4; Mon, 15 Jan 2007 23:01:13 +0100 (CET) Date: Mon, 15 Jan 2007 23:00:39 +0100 From: Pawel Jakub Dawidek To: Dirk Engling Message-ID: <20070115220039.GB2839@garage.freebsd.pl> References: <200701111841.l0BIfWOn015231@freefall.freebsd.org> <45A6DB76.40800@freebsd.org> <20070113112937.GI90718@garage.freebsd.pl> <45ABDC7C.6060407@erdgeist.org> <20070115210826.GA2839@garage.freebsd.pl> <45ABEEEE.4030609@erdgeist.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="uQr8t48UFsdbeI+V" Content-Disposition: inline In-Reply-To: <45ABEEEE.4030609@erdgeist.org> X-PGP-Key-URL: http://people.freebsd.org/~pjd/pjd.asc X-OS: FreeBSD 7.0-CURRENT i386 User-Agent: mutt-ng/devel-r804 (FreeBSD) X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on mail.garage.freebsd.pl X-Spam-Level: X-Spam-Status: No, score=-2.6 required=3.0 tests=BAYES_00 autolearn=ham version=3.0.4 Cc: freebsd-security@freebsd.org Subject: Re: HEADS UP: Re: FreeBSD Security Advisory FreeBSD-SA-07:01.jail X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jan 2007 22:01:30 -0000 --uQr8t48UFsdbeI+V Content-Type: text/plain; charset=iso-8859-2 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Jan 15, 2007 at 10:15:26PM +0100, Dirk Engling wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 >=20 > Pawel Jakub Dawidek wrote: >=20 > > In other words, it may break existing configurations. >=20 > Sorry, I meant "pwd -P" and assumed that, according to pwds man page, to > be default. Ok, this may work... > > --> Race <-- > >=20 > >> cp -f ${temp_log} console.log >=20 > No, since that directory is your cwd, you operate on ./ which wont > change by setting soft links along the path. You won't even be able to > remove that directory in the first place since the directories vnode is > locked. console.log can still be a softlink. I don't see option for cp(1) which allows to not following symlinks, so I'd suggest 'mv -f' instead - rename(2) doesn't follow symlinks. --=20 Pawel Jakub Dawidek http://www.wheel.pl pjd@FreeBSD.org http://www.FreeBSD.org FreeBSD committer Am I Evil? Yes, I Am! --uQr8t48UFsdbeI+V Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) iD8DBQFFq/mHForvXbEpPzQRAmCjAJ4lsJhGf06lcbj3MYYOe0IhWAsvTgCeJfOF uV+zaNeiFv+ZlOHsKfphh8M= =gmTr -----END PGP SIGNATURE----- --uQr8t48UFsdbeI+V--