← Back to team overview

openstack team mailing list archive

Re: security blueprint related to os binaries


On Tue, 2013-05-14 at 18:38 +0300, Vasiliy Khomenko wrote:
> Attacker can put binary in /usr/local/bin for example. on ubuntu that
> path located before /usr/bin.

If the attacker has write access to /usr/local/bin, it's already game
over; I don't see what we can do to nova that can mitigate something
that disastrous.

Kevin L. Mitchell <kevin.mitchell@xxxxxxxxxxxxx>

Follow ups