Date: Tue, 22 Dec 1998 17:05:03 +0000 From: Karl Pielorz <kpielorz@tdx.co.uk> To: "Bond, Jeffery" <Jeff.Bond@nectech.co.uk> Cc: "'cjclark@home.com'" <cjclark@home.com>, "'questions@freebsd.org'" <questions@FreeBSD.ORG> Subject: Re: Basic Security Question Message-ID: <367FD13F.1F19C977@tdx.co.uk> References: <084DD226F592D211988800A024AC583B02B789@exchange.nectech.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
"Bond, Jeffery" wrote: > > I still believe you are wrong. When you su'd to cjc (from root), you still > have root priviliges. Check the owner ship of passwd.old after you moved it, > its still owned by root. If you logged in as cjc rather than su-ing from > root, you will find that I am right, and the mv command will fail. > > regards, > > Jeff We had a similar problem with our FTP server, users 'owned' their own home directory (which seemed fairly sensible), and as a courtesy we'd put a 'readme.txt' file in each of their home directories, owned by root... We quickly noticed how the users could rename (i.e. mv) the file around though, and 'ye olde readme.txt started ending up as '.rhosts' + others very rapidly (fortunately they couldn't change it's contents)... Thus going to prove, the mere user (because they owned the directory - which is after all only a file), could manipulate the file 'owned' by root... I seem to remember they might even have been able to delete it... They could certainly rename it at will... We now supply the same readme, but with the ownership set to the user... ;-) -Kp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?367FD13F.1F19C977>