From owner-freebsd-questions Tue Aug 12 23:42:20 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA29034 for questions-outgoing; Tue, 12 Aug 1997 23:42:20 -0700 (PDT) Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA29027 for ; Tue, 12 Aug 1997 23:42:18 -0700 (PDT) Received: (from daemon@localhost) by alpo.whistle.com (8.8.5/8.8.5) id XAA06006; Tue, 12 Aug 1997 23:36:05 -0700 (PDT) Received: from current1.whistle.com(207.76.205.22) via SMTP by alpo.whistle.com, id smtpd005994; Wed Aug 13 06:36:01 1997 Date: Tue, 12 Aug 1997 23:33:41 -0700 (PDT) From: Julian Elischer To: John-David Childs cc: freebsd-questions@FreeBSD.ORG Subject: Re: Please explain why this is a security hole in /etc/daily In-Reply-To: <19970812232708.44622@denver.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 12 Aug 1997, John-David Childs wrote: > On Tuesday August 1997, Julian Elischer > had this to say about "Re: Please explain why this is a security hole > in /etc/daily": > > > John-David Childs wrote: > > > > > > happens next if the "action" is "rm -f {} \;" :=) > > > > the symlink gets deleted? > > The file pointed to by the symlink (/etc/master.passwd) gets deleted. last time I looked, neither find nor rm traversed symlinks. you need to make a DIRECTORY for this to work, not a file as you gave in your example.. julian