Is there a reason we do not turn on the file system hardlink/symlink protection in Rawhide?
Daniel J Walsh
dwalsh at redhat.com
Wed Mar 20 13:04:52 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 03/15/2013 11:11 AM, Rahul Sundaram wrote:
> On 03/15/2013 10:52 AM, Chris Adams wrote:
>> I agree that it doesn't really need a feature page, but IMHO it should be
>> in the release notes (this is something that could break existing
>> programs).
> Here you go
>
> https://fedoraproject.org/wiki/Documentation_Security_Beat
>
> Rahul
I a not sure private tmp for allowed would solve this problem, since you
could still attempt to trick a setuid app to read a link.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlFJs/QACgkQrlYvE4MpobNh9QCfaxkpmf4oFnTVlpgJ1IDzMM+S
mu4AnitJ5/d9NCm/RfBtYcAiRioaU3fU
=TiHs
-----END PGP SIGNATURE-----
More information about the devel
mailing list