[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: chown

From: Cameron Simpson <cs zip com au>
To: redhat-list redhat com
Cc: Stan Isaacs <isaacs hpcc01 corp hp com>, recipient list not shown: ;
Subject: Re: chown
Date: Fri, 31 Mar 2000 21:06:15 +1000

On Fri, Mar 31, 2000 at 12:09:08AM +0200, Bernhard Rosenkraenzer wrote:
| On Thu, 30 Mar 2000, Stan Isaacs wrote:
| >   After looking at both the redhat archives, and freebsd, I guess I'm 
| > convinced that chown won't work, by default, for non-root users.  Is there
| > any way to change that default on Redhat Linux 6.1?  

Don't know.

| It's not a default, it's a concept. Allowing anything else would be VERY
| stupid, as it would allow stuff like
| 
| cat >evil.sh <<EOF
| #!/bin/sh
| rm -rf ~someone/* ~someone/.*
| EOF
| chmod 4755 evil.sh
| chown someone evil.sh
| ./evil.sh

You've obviously never used such a system. They clear the setuid bit.
Perfectly valid and very handy. Doesn't work on Linux. Ah well.
-- 
Cameron Simpson, DoD#743        cs zip com au    http://www.zip.com.au/~cs/

When you're all dressed up and no place to go.	- B.H. Burt (19th cent)

References:
- chown
  - From: Stan Isaacs
- Re: chown
  - From: Bernhard Rosenkraenzer

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]