From owner-freebsd-questions Tue Jun 4 08:55:34 1996 Return-Path: owner-questions Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id IAA22320 for questions-outgoing; Tue, 4 Jun 1996 08:55:34 -0700 (PDT) Received: from mail.EUnet.hu (mail.eunet.hu [193.225.28.100]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id IAA22312 for ; Tue, 4 Jun 1996 08:55:29 -0700 (PDT) Received: by mail.EUnet.hu, id RAA22106; Tue, 4 Jun 1996 17:55:19 +0200 Received: by CoDe.CoDe.hu (RAA00352); Tue, 4 Jun 1996 17:10:51 GMT From: Gabor Zahemszky Message-Id: <199606041710.RAA00352@CoDe.CoDe.hu> Subject: Re: Limiting access To: freebsd-questions@freebsd.org Date: Tue, 4 Jun 1996 17:10:51 +0000 (GMT) Cc: dbabler@Rigel.orionsys.com In-Reply-To: from "David Babler" at Jun 1, 96 08:37:23 am X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > didn't own them, they couldn't create any new files or subdirectories > > unless you gave them appropriate permissions---and then they'd be able > > to remove and create a new .rhosts file. (But some clever combination > > of owner, mode, and sticky bit might work.) chown root /bbs/home chown root /bbs/home/.rhosts chgrp bbsgroup /bbs/home chmod 1770 /bbs/home The chflags is better, but this works on most Unices. > After poring through the man pages, the solution to keeping the user from > being able to delete the .rhosts file is to set it so he doesn't own it > and performing the command (as su): chgflags schg .rhosts which then -- Gabor Zahemszky -:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:-:- Earth is the cradle of human sense, but you can't stay in the cradle forever. Tsiolkovsky