apr-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 47630] NTFS directory junctions ("mounted folders") should be treated like n*x mount points (APR_DIR, not APR_LNK)
Date Wed, 05 Aug 2009 15:00:29 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=47630



--- Comment #9 from Dan <dan_j_thompson@hotmail.com> 2009-08-05 08:00:22 PDT ---
(In reply to comment #8)
> No, you would not.
> A modestly privilaged unix user cannot change mounts.

Unless granted those privileges. Such as for cdrom.

> Any authenticated win32 user can edit junctions.

Any win32 user can edit directories.

> Therefore this is far less kernel-oriented and far more symlink oriented.
> And you've offered no argument for breaking the APR *portability* association
> of junctions and symlinks, other than "I don't think it should work this way."
> Other than to open up a raft of new security issues,

What is the specific security concern? I.e., a win32 user can create, remove,
or change a junction, so if the APR treated junctions as directories, this
would cause... what? Data loss vulnerability? Spoofing vulnerability? Tampering
vulnerability? DoS vulnerability? Repudiation vulnerability? Elevation of
privilege vulnerability? How? Like, "Alice creates a Junction in a directory
that Bob has write access to, and he deletes the junction, so..."

> what is your technical
> argument that the existing behavior is broken?

On windows, in my experience, if you want to "play tricks" with your filesystem
such as store a bunch of files on some other drive but make them show up
somewhere in your C: drive, you use a junction. Mountvol creates a junction. If
you use the disk managment GUI to mount a volume anywhere other than as a
separate drive letter, it creates a junction.

This is analogous to how mount points are used in unix. We even call them
"mounted folders". Wherever you use "mount" on unix, you use "mountvol" on
windows.

If you are using this method to play tricks with your directory structure, and
then use a program that uses the APR and does not happen to omit APR_FINFO_LINK
when getting info about a directory, then the trick does not work with that
program.

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@apr.apache.org
For additional commands, e-mail: bugs-help@apr.apache.org


Mime
View raw message