Displaying 2 results from an estimated 2 matches for "nonsuper".
Did you mean:
consumer
2018 Feb 03
4
Unfortunate results from fake-super
When using fake-super mode in an rsync receiver, anything that's neither a
file nor a directory (e.g. devices, symlinks, etc) is converted into a file,
and properties such as original ownership, filetype, and permissions are
stored in a specific extended attribute.
In the case of a symlink, the contents of the link are stored in a plain
file. The original mode of the symlink is normally
2018 Feb 03
0
Unfortunate results from fake-super
...Example:
As regular user 'dg':
dg$ mkdir src
dg$ touch src/foo
dg$ chmod 444 src/foo
dg$ ln -s foo src/bar
Then as trusted (but unprivileged) user 'backup':
backup$ id -a
uid=1000(backup) gid=1000(backup) groups=1000(backup),100(users)
backup$ umask
0022
backup$ rsync -av src/ dst-nonsuper/
backup$ rsync -av --fake-super src/ dst-fake-super/
Now as (untrusted) user 'guest':
guest$ id -a
uid=9999(guest) gid=9999(guest) groups=9999(guest)
guest$ echo -n '/etc/shadow' > dst-nonsuper/bar
bash: dst-nonsuper/bar: Permission denied
guest$ echo -n '/etc/secret' &g...