431 – scp could prevent write access to server

Bug 431 - scp could prevent write access to server

Summary: scp could prevent write access to server

Status:	CLOSED INVALID

Alias:	None

Product:	Portable OpenSSH
Classification:	Unclassified
Component:	scp (show other bugs)
Version:	-current
Hardware:	All All

Importance:	P3 normal
Assignee:	OpenSSH Bugzilla mailing list

URL:
Keywords:

Depends on:
Blocks:

Reported:	2002-11-08 00:35 AEDT by gfernandez
Modified:	2004-04-14 12:24 AEST (History)
CC List:	0 users

See Also:

Attachments
adds readonly flag to scp (742 bytes, patch) 2002-11-08 00:36 AEDT, gfernandez	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description gfernandez 2002-11-08 00:35:34 AEDT

This provides a compile time mode where scp would refuse write operations.  As 
a result, scp would treat the server as readonly.

Comment 1 gfernandez 2002-11-08 00:36:38 AEDT

Created attachment 174 [details]
adds readonly flag to scp

this change applies to scp.c

Comment 2 rumen 2002-11-08 21:19:16 AEDT

What about command: 
$ ssh user@host '( cat > FILE_NAME_ON_REMOTE_HOST )' < FILE_NAME_ON_LOCAL_HOST 
 
this is same as: 
$ scp FILE_NAME_ON_LOCAL_HOST user@host:FILE_NAME_ON_REMOTE_HOST

Comment 3 gfernandez 2002-11-09 00:05:47 AEDT

like most security issues, this change would not be sufficient by itself. In my 
setup I've made other changes that make cat unavailable (i.e. by using chroot
()).

Comment 4 Damien Miller 2004-04-14 12:24:18 AEST

Mass change of RESOLVED bugs to CLOSED