Gosh, I just realized in context people might think this is the vuln I was talking about above. IT IS NOT. I just dropped an 0day.
you could argue that these checks are inconsistent; but OTOH, there are users who actually want to be able to chown files in /proc
-
-
for example, Android chowns /proc/sysrq-trigger to root:system so that system_server can use it (or at least Android used to do that)
-
if you did a capability check in sysrq-trigger, the kernel API would lose this flexibility
- 6 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.