Re: Proposal: restrict link(2)

Stuart Auchterlonie (
Thu, 12 Dec 1996 08:17:17 +1100 (EST)

[most of discussion on /tmp deleted...]

> My proposal would be to disallow linking a file into a directory which
> has the sticky bit set unless the owner of the file is attempting this.
> In other words, Joe Random Cracker can't do a 'ln /etc/passwd /tmp/foo'
> beforehand.
> Comments?

Have a look at the linux-security archives over the last month
or two. There was a whole discussion on the assorted insecurities
of /tmp and how we might go around fixing them.

Maybe even a patch or two :)

btw. Does this sound more like a linux-security issue than a
linux-kernel issue ???

> --
> Thomas Koenig,, ig25@dkauni2.bitnet.
> The joy of engineering is to find a straight line on a double
> logarithmic diagram.

Stuart Auchterlonie