[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: how does O_NOCTTY help? [Re: bug in chdir-safer
From: |
Paul Eggert |
Subject: |
Re: how does O_NOCTTY help? [Re: bug in chdir-safer |
Date: |
Fri, 10 Feb 2006 00:11:24 -0800 |
User-agent: |
Gnus/5.1007 (Gnus v5.10.7) Emacs/21.4 (gnu/linux) |
Jim Meyering <address@hidden> writes:
> how can setting the controlling terminal cause trouble if we're
> guaranteed never to read from or write to the corresponding file
> descriptor.
Once the terminal controls you, someone typing Control-C on that
terminal can send you a signal, even if you're not reading or writing
to the corresponding file descriptor. On hosts where O_NOCTTY is
significant, and which do not support O_DIRECTORY (Solaris, for
example), this can cause an attacker to kill a seemingly-unrelated
directory-traversal process.
- how does O_NOCTTY help? [Re: bug in chdir-safer, Jim Meyering, 2006/02/09
- Re: how does O_NOCTTY help? [Re: bug in chdir-safer, Jim Meyering, 2006/02/09
- Re: how does O_NOCTTY help? [Re: bug in chdir-safer, Jim Meyering, 2006/02/09
- Re: how does O_NOCTTY help? [Re: bug in chdir-safer,
Paul Eggert <=
- Re: how does O_NOCTTY help? [Re: bug in chdir-safer, Jim Meyering, 2006/02/10
- Re: how does O_NOCTTY help? [Re: bug in chdir-safer, Paul Eggert, 2006/02/10
- Re: how does O_NOCTTY help? [Re: bug in chdir-safer, Jim Meyering, 2006/02/12
- Re: how does O_NOCTTY help? [Re: bug in chdir-safer, Paul Eggert, 2006/02/12
- Re: how does O_NOCTTY help? [Re: bug in chdir-safer, Jim Meyering, 2006/02/14
- Re: how does O_NOCTTY help? [Re: bug in chdir-safer, Paul Eggert, 2006/02/14