Date: Tue, 28 Jan 1997 10:32:22 -0700 (MST) From: Terry Lambert <terry@lambert.org> To: peter@taronga.com (Peter da Silva) Cc: hackers@freebsd.org Subject: Re: file locking / firewalling based on uid/gid Message-ID: <199701281732.KAA08366@phaeton.artisoft.com> In-Reply-To: <199701281404.IAA04275@bonkers.taronga.com> from "Peter da Silva" at Jan 28, 97 08:04:43 am
next in thread | previous in thread | raw e-mail | index | archive | help
> The only reason for disabling chown any more is for quotas, and quotas don't > work right anyway. I'd like to recommend going back to the USG semantics for > chown(). This is for giving files away to other users, right? There are a number of nasty exploits available via NFS doing this (you can get root on almost any old SGI system this way; check the CERT advisory log). Regards, Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199701281732.KAA08366>