From owner-freebsd-security Tue Jul 8 13:41:53 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA07305 for security-outgoing; Tue, 8 Jul 1997 13:41:53 -0700 (PDT) Received: from mexico.brainstorm.eu.org (root@mexico.brainstorm.fr [193.56.58.253]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA07259 for ; Tue, 8 Jul 1997 13:41:24 -0700 (PDT) Received: from brasil.brainstorm.eu.org (brasil.brainstorm.fr [193.56.58.33]) by mexico.brainstorm.eu.org (8.8.4/8.8.4) with ESMTP id WAA20525 for ; Tue, 8 Jul 1997 22:40:50 +0200 Received: (from uucp@localhost) by brasil.brainstorm.eu.org (8.8.4/8.6.12) with UUCP id WAA29243 for security@FreeBSD.ORG; Tue, 8 Jul 1997 22:40:20 +0200 Received: (from roberto@localhost) by keltia.freenix.fr (8.8.6/keltia-uucp-2.9) id WAA14236; Tue, 8 Jul 1997 22:20:33 +0200 (CEST) Message-ID: <19970708222033.09272@keltia.freenix.fr> Date: Tue, 8 Jul 1997 22:20:33 +0200 From: Ollivier Robert To: security@FreeBSD.ORG Subject: Re: Security Model/Target for FreeBSD or 4.4? References: <9707072348.AA21807@communica.com.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.76 In-Reply-To: ; from Robert Watson on Tue, Jul 08, 1997 at 11:58:43AM -0400 X-Operating-System: FreeBSD 3.0-CURRENT ctm#3392 AMD-K6 MMX @ 208 MHz Sender: owner-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk According to Robert Watson: > Symlinks don't have the same problem in that they aren't suid (or such), > but still cannot be deleted by a regular user if created in a sticky-bit > environment. Just to clarify, they can now be deleted in CURRENT as of 3/31/97 because Peter changed them back (yeah!) peter 97/03/31 04:03:04 Modified: sys/kern vfs_syscalls.c sys/ufs/ufs ufs_lookup.c ufs_vnops.c Log: Treat symlinks as first class citizens with their own uid/gid rather than as shadows of their containing directory. This should solve the problem of users not being able to delete their symlinks from /tmp once and for all. Symlinks do not have modes though, they are accessable to everything that can read the directory (as before). They are made to show this fact at lstat time (they appear as mode 0777 always, since that's how the the lookup routines in the kernel treat them). More commits will follow, eg: add a real lchown() syscall and man pages. -- Ollivier ROBERT -=- FreeBSD: There are no limits -=- roberto@keltia.freenix.fr FreeBSD keltia.freenix.fr 3.0-CURRENT #20: Fri Jun 13 00:16:13 CEST 1997