[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: override write protection?



On Thu, Aug 10, 2000 at 08:03:30AM -0500, Charles Menzes wrote:
> why can i as an ordinary user remove a file owned by another user when the
> file is 0644 with a grp assigned to it that i am not a member of?
> this seems wrong :)

Do you have write permission on the directory?  If so, that's correct
behavior.

World- or group-writable directories should have the sticky bit set,
which prevents anyone from deleting files unless they own either the
file to be deleted or the directory.  But no one can stop the owner of
a directory from doing whatever (s)he likes.  If that's a problem,
don't leave files in directories owned by people you don't trust
without keeping a hard link around in a safe directory.
-
To unsubscribe, send email to majordomo@luci.org with
"unsubscribe luci-discuss" in the body.