Security issues with abstract namespace sockets
Matt McCutchen
matt at mattmccutchen.net
Wed Jan 5 21:33:23 UTC 2011
On Wed, 2011-01-05 at 15:25 -0500, Adam Jackson wrote:
> On Wed, 2011-01-05 at 13:38 -0500, Matt McCutchen wrote:
> > The
> > more significant DoS condition is another user taking the name you want,
> > which can happen in the abstract namespace but not in a directory only
> > you can write.
>
> I don't have any of those. If the X server is running as root (like in
> the gdm case) then I can put the socket wherever I want. If it's Xvfb,
> then where do I put this directory? $HOME ? Nope, might not be
> there. /tmp/$USER ? Won't work if someone else mkdir'd /tmp/ajax
> before I did.
What about the XDG_RUNTIME_DIR (/var/run/user/$USER) from systemd?
--
Matt
More information about the devel
mailing list