[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Symlink flag for chmod
From: |
Johannes Segitz |
Subject: |
Symlink flag for chmod |
Date: |
Thu, 25 Jan 2024 13:30:00 +0100 |
Hello,
chown has a flag that prevents symlink following. chown/chmod is sometimes
used in %post/%pre sections of rpm packages to fix up permissions. When
this is done in user owned directories (somewhere along the path) this is a
security problem. chown allows users to handle this via the -h flag which
instructs it not to follow a symlink.
The attached patch adds this flag for chmod. I read
https://git.savannah.gnu.org/cgit/coreutils.git/plain/README-hacking
but chmod doesn't have an email listed, so I set the patch here.
Please CC me in replies, I'm not subscribed to the list.
Thanks,
Johannes
--
GPG Key EE16 6BCE AD56 E034 BFB3 3ADD 7BF7 29D5 E7C8 1FA0
Subkey fingerprint: 250F 43F5 F7CE 6F1E 9C59 4F95 BC27 DD9D 2CC4 FD66
SUSE Software Solutions Germany GmbH, Frankenstraße 146, 90461 Nürnberg, Germany
Geschäftsführer: Ivo Totev, Andrew McDonald, Werner Knoblich (HRB 36809, AG
Nürnberg)
chmod_nofollow_symlinks_option.patch
Description: Text Data
signature.asc
Description: Digital signature
- Symlink flag for chmod,
Johannes Segitz <=