Re: [PATCH] missing checks in exec_permission_light()

• Next message: Pavel Machek: "Re: kbuild 2.5 is ready for inclusion in the 2.5 kernel"
• Previous message: Pavel Machek: "Re: [prepatch] address_space-based writeback"
• Next in thread: Alexander Viro: "Re: [PATCH] missing checks in exec_permission_light()"
• Reply: Alexander Viro: "Re: [PATCH] missing checks in exec_permission_light()"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi!

> + if (S_ISDIR(inode->i_mode) && capable(CAP_DAC_READ_SEARCH))
> + return 0;

Is this right? This means that root can do cat /, no? That does not
seem like expected behaviour.
                                                                        Pavel

-- 
(about SSSCA) "I don't say this lightly.  However, I really think that the U.S.
no longer is classifiable as a democracy, but rather as a plutocracy." --hpa
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

• Next message: Pavel Machek: "Re: kbuild 2.5 is ready for inclusion in the 2.5 kernel"
• Previous message: Pavel Machek: "Re: [prepatch] address_space-based writeback"
• Next in thread: Alexander Viro: "Re: [PATCH] missing checks in exec_permission_light()"
• Reply: Alexander Viro: "Re: [PATCH] missing checks in exec_permission_light()"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Tue May 07 2002 - 22:00:18 EST