From owner-freebsd-security Sat Mar 23 14:10:58 2002 Delivered-To: freebsd-security@freebsd.org Received: from pumaman.dyndns.org (rl179.isis.de [195.158.146.179]) by hub.freebsd.org (Postfix) with ESMTP id 6666237B421 for ; Sat, 23 Mar 2002 14:10:51 -0800 (PST) Received: from ws.bnet ([192.168.100.222] helo=there) by pumaman.dyndns.org with smtp (Exim 3.34 #1) id 16otir-000HR6-00 for security@freebsd.org; Sat, 23 Mar 2002 23:10:49 +0100 Content-Type: text/plain; charset="iso-8859-1" From: Bjoern Engels To: security@freebsd.org Subject: Re: strange behaviour on /tmp Date: Sat, 23 Mar 2002 23:10:49 +0100 X-Mailer: KMail [version 1.3.2] References: <20020323214535.Y212-100000@phoenix.vh.laserfence.net> In-Reply-To: <20020323214535.Y212-100000@phoenix.vh.laserfence.net> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Message-Id: Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Saturday, 23. March 2002 20:46, Willie Viljoen wrote: >> I have /tmp mode 1777, and mounted like this in fstab: >> "/dev/something tmp ufs rw,nosuid,nodev=20 >> 2 2" >> >> The thing I am noticing is that all files created under /tmp get >> to be created as group wheel, no matter of the permissions of the >> directory they are created in, or the user that creates them. > > The mode 1777 turns on the sticky bit, hence, any write to /tmp is > created as the owner of /tmp. 1777 means only the owner of a file can delete it. I bet /tmp has been set up 2777 or 3777 so all new files are being associated with the group /tmp belongs to (wheel). Cheers Bjoern To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message