Ticket #1049 (closed bug: fixed)
Issuing a "rm -r" command on a samba mounted share deletes files on the router's /
|Reported by:||David Ludovino <david.ludovino@…>||Owned by:|
I have an USB disk attached to Fonera 2.0n. One of it's partitions is used to backup my home folder. Here is it's entry on /etc/fstab
//192.168.10.1/Media/configurations /media/configurations cifs iocharset=utf8,credentials=/home/david/.fonera_credentials,uid=1000,gid=1000,noauto 0 0
In the directory /media/configurations I ran the command "rm -r .*". Besides the hidden directories this also deleted files on the router's filesystem. The router still allowed me to browse the web but when I tried to access the dashboard ( http://fonera) I got an error saying some file in /etc was missing.
After restarting the router it became nonfunctional and the only way to revive it was to restore the firmware.
I've got a hint that I might have some link under my preferences folders that points to somewhere in / and then the router recursively deletes files on it's /. Such would imply that the router is running the "rm -r" command with root privileges which is a severe security flaw.