35 * |
35 * |
36 * <table class="striped"> |
36 * <table class="striped"> |
37 * <caption style="display:none">Table shows permission target name, what the permission allows, and associated risks</caption> |
37 * <caption style="display:none">Table shows permission target name, what the permission allows, and associated risks</caption> |
38 * <thead> |
38 * <thead> |
39 * <tr> |
39 * <tr> |
40 * <th>Permission Target Name</th> |
40 * <th scope="col">Permission Target Name</th> |
41 * <th>What the Permission Allows</th> |
41 * <th scope="col">What the Permission Allows</th> |
42 * <th>Risks of Allowing this Permission</th> |
42 * <th scope="col">Risks of Allowing this Permission</th> |
43 * </tr> |
43 * </tr> |
44 * </thead> |
44 * </thead> |
45 * <tbody> |
45 * <tbody> |
46 * <tr> |
46 * <tr> |
47 * <td>hard</td> |
47 * <th scope="row">hard</th> |
48 * <td> Ability to add an existing file to a directory. This is sometimes |
48 * <td> Ability to add an existing file to a directory. This is sometimes |
49 * known as creating a link, or hard link. </td> |
49 * known as creating a link, or hard link. </td> |
50 * <td> Extreme care should be taken when granting this permission. It allows |
50 * <td> Extreme care should be taken when granting this permission. It allows |
51 * linking to any file or directory in the file system thus allowing the |
51 * linking to any file or directory in the file system thus allowing the |
52 * attacker access to all files. </td> |
52 * attacker access to all files. </td> |
53 * </tr> |
53 * </tr> |
54 * <tr> |
54 * <tr> |
55 * <td>symbolic</td> |
55 * <th scope="row">symbolic</th> |
56 * <td> Ability to create symbolic links. </td> |
56 * <td> Ability to create symbolic links. </td> |
57 * <td> Extreme care should be taken when granting this permission. It allows |
57 * <td> Extreme care should be taken when granting this permission. It allows |
58 * linking to any file or directory in the file system thus allowing the |
58 * linking to any file or directory in the file system thus allowing the |
59 * attacker to access to all files. </td> |
59 * attacker to access to all files. </td> |
60 * </tr> |
60 * </tr> |