[Pkg-samba-maint] DO NOT REPLY [Bug 4155] Improper handling of /../ in path names
samba-bugs at samba.org
samba-bugs at samba.org
Sat Jan 31 20:07:52 UTC 2009
https://bugzilla.samba.org/show_bug.cgi?id=4155
------- Comment #6 from rabbit at rabbit.us 2009-01-31 14:07 CST -------
Re-posting from the 2nd part of the bug description:
------------------------------------------
Note: How did I come around this bug, and who would use /../ in a path
specification anyway: vsftpd offers the nice trick of chrooting users to a part
of their home directory path - it simply stops processing the string as soon as
it sees '/./' So naturally all my users have homedirs like this:
/home/webspace/<user>/./../../<user> where /home/webspace/<user> is world
readable and /home/<user> is not. The abovementioned bug breaks the use of %H.
--
Configure bugmail: https://bugzilla.samba.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
More information about the Pkg-samba-maint
mailing list