netfilter firewalling problems and solutions

ken_i_m at elegantinnovations.net ken_i_m at elegantinnovations.net
Fri Feb 20 18:52:34 PST 2004


On Fri, Feb 20, 2004 at 05:30:19PM -0500, Robert Connolly (cendres at videotron.ca) wrote:
> There is an old post, maybe to security@ from decemberish. I think there is a 
> way to hardlink to an suid binary, so if its deinstalled and reinstalled, the 
> user can run the old binary, which might be lacking security fixes that are 
> in the new one. I've also seen this attack described on the coreutils ml.

The hardlink attack was the solution to a hack challenge posted <somewhere> 
last fall.
-- 
I think, therefore, ken_i_m
Chief Gadgeteer, Elegant Innovations
Founder, Bozeman Linux Users Group
(406) 581-0495



More information about the hlfs-dev mailing list