Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1994_4

Bugtraq archives for 4th quarter (Oct-Dec) 1994: Re: chown, quotas and security

Re: chown, quotas and security

Neil Woods (neillegless.demon.co.uk)
Sun, 6 Nov 1994 03:29:21 +0100 (GMT+0100)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Neil Woods: "Re: chown, quotas and security"
Previous message: jimTadpole.COM: "Re: broadcast + netmask = bug (?) (was Re: udp packet storms - ping death)"

> > Only in a very trusting environment, where you don't mind if users chown
> > files they dont own to themselves....
> 
> Of course you'd wrap it up or write your own little chown utility 
> before you made it suid :)
> 

You'd introduce a race condition with a wrapper.  If you wrote your
own chown command, you could do it securely, using fchown..

Neil

-- 
Bull in the Heather, Me and My Charms, The Lights, Sensual World, Go, Ritual,
Handsome and Gretel, Take Me, Blue Room, Drunken Butterfly, She's Lost Control.

        ...like a badger with an afro throwing sparklers at the Pope...

Next message: Neil Woods: "Re: chown, quotas and security"
Previous message: jimTadpole.COM: "Re: broadcast + netmask = bug (?) (was Re: udp packet storms - ping death)"