Issue 8 in chironfs: Security problem?
codesite...@google.com
http://code.google.com/p/chironfs/issues/detail?id=8
New issue report by ndbecker2:
chironfs-1.0-RC8.x86_64
mount
/dev/md0 on / type ext3 (rw,noatime)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/sda1 on /boot type ext3 (rw)
tmpfs on /dev/shm type tmpfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)
/real1=/real2 on /virtual type fuse (rw,nosuid,nodev,allow_other)
What steps will reproduce the problem?
touch /virtual/test1
[nbecker@nbecker5 ~]$ ls -l /virtual/
total 0
-rw-rw-r-- 1 nbecker nbecker 0 2007-10-04 10:09 test1
[nbecker@nbecker5 ~]$ sudo chown root.root /virtual/test1
[nbecker@nbecker5 ~]$ touch /virtual/test1
[nbecker@nbecker5 ~]$ ls -l /virtual/test1
-rw-rw-r-- 1 root root 0 2007-10-04 10:10 /virtual/test1
File was owned by root, but I was able to touch it???
What is the expected output? What do you see instead?
What version of the product are you using? On what operating system?
Please provide any additional information below.
Issue attributes:
Status: New
Owner: ----
Labels: Type-Defect Priority-Medium
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
codesite...@google.com
http://code.google.com/p/chironfs/issues/detail?id=8
Comment #1 by luisfurquim:
Bug tested and reproduced. I wil work on it now.
Issue attribute updates:
Status: Started
Owner: luisfurquim
Labels: -Priority-Medium Priority-High