[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Supermount




On Tue, 18 Jan 2000, Stanislav Malyshev a.k.a Frodo wrote:

> IA>> /dev/sda1 /mnt/DOS_sda1 vfat user,exec,conv=auto 0 0
> IA>> /dev/sda5 /mnt/DOS_sda5 vfat user,exec,conv=auto 0 0
> 
> Why isn't it noexec,nodev,nosuid? Do somebody really goes to run Linux
> binaries from DOS partition? To store devices there? I don't know if it is
> possible to doctor VFAT tables so that Linux will parse it as SUID or
> device, but I won't risk this...

If they can "doctor" your vfat table then they must be able to write
/dev/sda, so they can doctor /etc/passwd, just as well.



-- 
Matan Ziv-Av                          matan@svgalib.org


=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il