Date: Wed, 28 Feb 1996 01:57:55 +1100 From: Bruce Evans <bde@zeta.org.au> To: bmc@telebase.com, newton@communica.com.au Cc: msmith@comtch.iea.com, nlawson@kdat.csc.calpoly.edu, security@freebsd.org Subject: Re: Suspicious symlinks in /tmp Message-ID: <199602271457.BAA03316@godzilla.zeta.org.au>
next in thread | raw e-mail | index | archive | help
>... also totally irrelevent: The permissions on the symlink don't >arbitrate file access permissions -- The permissions on the file it's >pointing to (ie: the destination) are used for that purpose. >So: Not only does it not matter who owns the symlink, it also doesn't >matter how it is chmod'ed. You can set its permissions to rwxrwxrwx >without making a spot of difference to the accessibility of the file >it's pointing at. The uid matters for symlinks in sticky directories: $ ln -s /etc/passwd /tmp/mysymlink $ rm /tmp/mysymlink rm: /tmp/mysymlink: Operation not permitted Bruce
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199602271457.BAA03316>