[Openstack] security blueprint related to os binaries
Kevin L. Mitchell
kevin.mitchell at rackspace.com
Tue May 14 15:50:21 UTC 2013
On Tue, 2013-05-14 at 18:38 +0300, Vasiliy Khomenko wrote:
> Attacker can put binary in /usr/local/bin for example. on ubuntu that
> path located before /usr/bin.
If the attacker has write access to /usr/local/bin, it's already game
over; I don't see what we can do to nova that can mitigate something
that disastrous.
--
Kevin L. Mitchell <kevin.mitchell at rackspace.com>
More information about the Openstack
mailing list