|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [somewhat OT] The age-old problem of securely allowing anonymous file uploads
From: Adam Skutt (askutt
wnec.edu)
Date: Tue Nov 09 2004 - 12:14:05 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
L. V. Lammert wrote:
>
> Better than sftp, actually, as sftp does not run chroot'd. The password
> risk is more than offset by the system security of the chroot.
Not really, as it's been shown that breaking out of a chroot is possible.
Besides, a regular user doesn't have permissions anywhere but in /tmp
and his/her /home directory anyway, so it's not like the chroot gives
you a huge gain.
Plus, data loss because someone else compromised the password may not be
very acceptable.
>
> One way to mitigate, if you wish, is to automatically move files from the
> upload directory to a safer one.
That's fundamentally racy and icky.
If SFTP isn't a viable option, using FTP with S/KEY passwords is a
better solution.
Adam
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]