GNU bug report logs - #865
23.0.60; The directory is unsafe today

Previous Next

Package: emacs;

Reported by: "Lennart Borgman (gmail)" <lennart.borgman <at> gmail.com>

Date: Tue, 2 Sep 2008 16:10:05 UTC

Severity: normal

Merged with 3281, 4197, 8787

Found in version 23.3

Full log

Message #630 received at 865 <at> emacsbugs.donarmstrong.com (full text, mbox):

From: Jason Rumney <jasonr <at> gnu.org>
To: Stefan Monnier <monnier <at> iro.umontreal.ca>
Cc: Eli Zaretskii <eliz <at> gnu.org>, 865 <at> debbugs.gnu.org
Subject: Re: bug#865: 23.0.60; The directory is unsafe today
Date: Mon, 08 Sep 2008 11:40:12 +0800

Stefan Monnier wrote:
>> This is impossible on Windows, AFAIK.  There are special flags to the
>> syscall that opens a file or directory that can bypass any denied
>> rights to enter a directory or open a file.  (These flags allegedly
>> exist so that system backup and restore programs could DTRT without
>> running as a privileged user.)
>>     
>
> Are you saying that anybody can read any file (or dir) simply by using
> those extra flags when they open those files and dirs?  So there's no
> possible privacy between users on the same machine?  If so, we may just
> stop to worry about server-ensure-safe-dir under w32 since there's
> simply no way for it to be safe (short of encrypting it, which implies
> a fairly different UI).
>   

I don't know the full details of NTFS security, but there is a special 
group called "Backup Users", which I would expect to be linked with the 
use of these flags somehow.
This bug report was last modified 7 years and 236 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.