Possible security problem, need information...
Jonathan I. Kamens
jik at athena.mit.edu
Thu Mar 21 09:49:27 AEST 1991
In article <1991Mar20.165442.7210 at ux1.cso.uiuc.edu>, edotto at ux1.cso.uiuc.edu (Ed Otto) writes:
|> But seriously,I think that this is not a problem as mine is the same way.
|> I think that world MUST have write access to the root fs, because otherwise
|> I don't think that you could write ANYTHING on the entire file system unless
|> you were logged in as 'root'...
What exactly do you mean by this?
% pwd
/site/tmp
% ls -ldg / /site /site/tmp
drwxr-xr-x 18 root wheel 512 Mar 20 18:19 //
drwxr-xr-x 5 root wheel 512 Mar 20 15:39 /site/
drwxrwxrwt 3 root wheel 4096 Mar 20 18:47 /site/tmp/
% touch foobar
% whoami
jik
To write to a directory, you only need *execute* permission on all the
directories above it, and *write* permission to the directory itself. A Unix
that required write access to all parent directories would be a strange kind
of Unix indeed, and nothing like any I've ever come across.
--
Jonathan Kamens USnail:
MIT Project Athena 11 Ashford Terrace
jik at Athena.MIT.EDU Allston, MA 02134
Office: 617-253-8085 Home: 617-782-0710
More information about the Comp.unix.admin
mailing list