From owner-freebsd-amd64@FreeBSD.ORG  Tue Jan 18 20:10:37 2011
Return-Path: <owner-freebsd-amd64@FreeBSD.ORG>
Delivered-To: freebsd-amd64@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id C2147106566C;
	Tue, 18 Jan 2011 20:10:37 +0000 (UTC)
	(envelope-from sgk@troutmask.apl.washington.edu)
Received: from troutmask.apl.washington.edu (troutmask.apl.washington.edu
	[128.208.78.105])
	by mx1.freebsd.org (Postfix) with ESMTP id A36D58FC17;
	Tue, 18 Jan 2011 20:10:37 +0000 (UTC)
Received: from troutmask.apl.washington.edu (localhost.apl.washington.edu
	[127.0.0.1])
	by troutmask.apl.washington.edu (8.14.4/8.14.4) with ESMTP id
	p0IKAbZn066573; Tue, 18 Jan 2011 12:10:37 -0800 (PST)
	(envelope-from sgk@troutmask.apl.washington.edu)
Received: (from sgk@localhost)
	by troutmask.apl.washington.edu (8.14.4/8.14.4/Submit) id
	p0IKAbro066572; Tue, 18 Jan 2011 12:10:37 -0800 (PST)
	(envelope-from sgk)
Date: Tue, 18 Jan 2011 12:10:37 -0800
From: Steve Kargl <sgk@troutmask.apl.washington.edu>
To: Ihor R <kaba@goodnet.com.ua>
Message-ID: <20110118201037.GA63079@troutmask.apl.washington.edu>
References: <201101181622.p0IGMrfs074713@freefall.freebsd.org>
	<c22200ee7f20df00817966dbd7d3a6c9@goodnet.com.ua>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <c22200ee7f20df00817966dbd7d3a6c9@goodnet.com.ua>
User-Agent: Mutt/1.4.2.3i
Cc: kib@freebsd.org, freebsd-amd64@freebsd.org
Subject: Re: amd64/154112: user can delete file witch owned by root:wheel
X-BeenThere: freebsd-amd64@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Porting FreeBSD to the AMD64 platform <freebsd-amd64.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-amd64>,
	<mailto:freebsd-amd64-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-amd64>
List-Post: <mailto:freebsd-amd64@freebsd.org>
List-Help: <mailto:freebsd-amd64-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-amd64>,
	<mailto:freebsd-amd64-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Jan 2011 20:10:37 -0000

On Tue, Jan 18, 2011 at 09:11:05PM +0200, Ihor R wrote:
> On Tue, 18 Jan 2011 16:22:53 GMT, kib@FreeBSD.org wrote:
> >User home directory is owned by user, right ?
> >The system works as intended, read about unix file permission model.
> 
> The home user directory is owned by user, but I quote don't understand 
> how I can provide hosting service for my users, if anybody user can 
> delete any files in his home directory. By example:
> 

man chflags

su root
cd /usr/home/kargl
touch zxc.txt
chown root:wheel zxc.txt
chflags schg /usr/home/kargl/zxc.txt
exit

su kargl
troutmask:kargl[201] rm zxc.txt
override rw-r--r--  root/wheel schg for zxc.txt? y
rm: zxc.txt: Operation not permitted


-- 
Steve