From owner-freebsd-amd64@FreeBSD.ORG  Tue Jan 18 21:11:04 2011
Return-Path: <owner-freebsd-amd64@FreeBSD.ORG>
Delivered-To: freebsd-amd64@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 9FBED106564A
	for <freebsd-amd64@FreeBSD.org>; Tue, 18 Jan 2011 21:11:04 +0000 (UTC)
	(envelope-from gpalmer@freebsd.org)
Received: from noop.in-addr.com (mail.in-addr.com [IPv6:2001:470:8:162::1])
	by mx1.freebsd.org (Postfix) with ESMTP id 705728FC1C
	for <freebsd-amd64@FreeBSD.org>; Tue, 18 Jan 2011 21:11:04 +0000 (UTC)
Received: from gjp by noop.in-addr.com with local (Exim 4.73 (FreeBSD))
	(envelope-from <gpalmer@freebsd.org>)
	id 1PfIpS-0003WZ-Cy; Tue, 18 Jan 2011 16:11:02 -0500
Date: Tue, 18 Jan 2011 16:11:02 -0500
From: Gary Palmer <gpalmer@freebsd.org>
To: Ihor R <kaba@goodnet.com.ua>
Message-ID: <20110118211102.GB67092@in-addr.com>
References: <201101182010.p0IKAA5u010462@freefall.freebsd.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <201101182010.p0IKAA5u010462@freefall.freebsd.org>
X-SA-Exim-Connect-IP: <locally generated>
X-SA-Exim-Mail-From: gpalmer@freebsd.org
X-SA-Exim-Scanned: No (on noop.in-addr.com); SAEximRunCond expanded to false
Cc: freebsd-amd64@FreeBSD.org
Subject: Re: amd64/154112: user can delete file witch owned by root:wheel
X-BeenThere: freebsd-amd64@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Porting FreeBSD to the AMD64 platform <freebsd-amd64.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-amd64>,
	<mailto:freebsd-amd64-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-amd64>
List-Post: <mailto:freebsd-amd64@freebsd.org>
List-Help: <mailto:freebsd-amd64-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-amd64>,
	<mailto:freebsd-amd64-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Jan 2011 21:11:04 -0000

On Tue, Jan 18, 2011 at 08:10:10PM +0000, Ihor R wrote:
> The following reply was made to PR amd64/154112; it has been noted by GNATS.
> 
> From: Ihor R <kaba@goodnet.com.ua>
> To: <bug-followup@FreeBSD.org>, <kaba@goodnet.com.ua>
> Cc:  
> Subject: Re: amd64/154112: user can delete file witch owned by root:wheel
> Date: Tue, 18 Jan 2011 21:27:23 +0200
> 
>   On Tue, 18 Jan 2011 16:22:53 GMT, kib@FreeBSD.org wrote:
>  > User home directory is owned by user, right ?
>  > The system works as intended, read about unix file permission model.
>  
>   The home user directory is owned by user, but I quote don't understand 
>   how I can provide hosting service for my users, if anybody user can 
>   delete any files in his home directory. By example:
>  
>   if I want to block some resources, like site, by adding "deny from all" 
>   to .htaccess and replace owner of this file to root:wheel. User can not 
>   change this file (rewrite) but he can delete this file any time he wish 
>   - and the site will go on to work and can make some steps to damage 
>   server.
>  
>   Can you please explain me how can I get back to Unix where users can't 
>   delete file which they not own. What steps I need to do to solve current 
>   problem.
>   I need that users can't change or delete files, that users not own, 
>   anyway it's (files) placed.

man 8 sticky