Symlink Race Condition
Last night, I removed Ruid2 for two reasons.
1. It seems to be conflicting with OWASP
2. It appears to conflict with an OS Commerce application i'm testing.
I Installed SUphp with SUexec and Bluehost Symlink Patch
Today, I came in to work to find lots of errors like this.
"Caught race condition abuser. attacker: 505, victim: 0 open file owner: 0, open file:"
Which I assume is CSF.
I've never seen these under Ruid2.
Need I be worried ?
-
Hello, Here's the first result I found when entering "Caught race condition abuser. attacker: 505" (including the quotes) on Google: patch prevents access to files that the user does not own, how does it determine what the user owns? The 0 -
I believe this was something left over from last nights changes and a user permissions thing. Digging deep inside the user folder i found a number of files which had not changed ownership when i ran CHOWN. Since I re ran CHOWN the errors appear to have subsided. 0
Please sign in to leave a comment.
Comments
2 comments