@mjg59 Interesting, that said I'm not sure if this one would have much of an effect as a lot of path resolution works entirely in userspace.
See the output of strace realpath ../../../../../../etc/passwd for example, so I guess it would also need changes in something like standard libraries.
@mjg59 I'm surprised that it wasn't a thing already! Seems like an obvious win for a bunch of situations. I'd love to turn that on for a bunch of daemons, seems very reasonable to me.
@nogweii@mjg59 The openat2() system call seems to be the current attempt to solve the problem (e.g. with the RESOLVE_BENEATH or RESOLVE_IN_ROOT flags). Of course, that only helps if you control all the places files might be opened, which probably won't be the case if you use any libraries.
Add comment