hi everyone Parazyd just caught my attention with this interesting story, to be added to the history of catastrophies we dodged. I hope someone keeps a list of systemd CVEs somewhere?
https://packetstormsecurity.com/files/146184/systemd-Local-Privilege-Escalation.html " Before version 237, the systemd-tmpfiles program will change the permissions and ownership of hard links. If the administrator disables the fs.protected_hardlinks sysctl, then an attacker can create hard links to sensitive files and subvert systemd-tmpfiles, particularly with "Z" type entries. " ...meanwhile I heard from people back from FOSDEM that Mr.Poettering went on to rewrite rsync :^D ciao _______________________________________________ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
