/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to network-hooks.d/wireless.conf

  • Committer: Teddy Hogeborn
  • Date: 2014-06-08 03:10:08 UTC
  • Revision ID: teddy@recompile.se-20140608031008-mc9bd7b024a3q0y0
Address a very theoretical possible security issue in mandos-client.

If there were to run some sort of "cleaner" process for /run/tmp (or
/tmp), and mandos-client were to run for long enough for that cleaner
process to remove the temporary directory for GPGME, there was a
possibility that another unprivileged process could trick the (also
unprivileged) mandos-client process to remove other files or symlinks
which the unprivileged mandos-client process was allowed to remove.
This is not currently known to have been exploitable, since there are
no known initramfs environments running such cleaner processes.

* plugins.d/mandos-client.c (main): Use O_NOFOLLOW when opening
                                    tempdir for cleaning.

Show diffs side-by-side

added added

removed removed

Lines of Context:
network-hooks.d/wireless.conf
 
1
# Extra options for wpa_supplicant, if any
 
2
#WPAS_OPTIONS=""
 
3
 
 
4
# wlan0
 
5
ADDRESS_0=00:11:22:33:44:55
 
6
MODULE_0=ath9k
 
7
#WPA_DRIVER_0=wext
 
8
wpa_interface_0(){
 
9
    # Use this format to set simple things:
 
10
    wpa_cli_set ssid home
 
11
    wpa_cli_set psk "secret passphrase"
 
12
    # Use this format to do more complex things with wpa_cli:
 
13
    #"$wpa_cli" -p "$CTRLDIR" -i "$INTERFACE" bssid "$NETWORK" 00:11:22:33:44:55
 
14
    #"$wpa_cli" -g "$CTRL" ping
 
15
}
 
16
#DELAY_0=10
 
17
IPADDRS_0=dhcp
 
18
#IPADDRS_0="192.0.2.3/24 2001:DB8::aede:48ff:fe71:f6f2/32"
 
19
#ROUTES_0="192.0.2.0/24 2001:DB8::/32"
 
20
 
 
21
#ADDRESS_1=11:22:33:44:55:66
 
22
#MODULE_1=...
 
23
#...