Re: Proposal: restrict link(2)

Theodore Y. Ts'o (tytso@mit.edu)
Mon, 16 Dec 1996 13:02:08 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Michael Meissner: "Re:Possible kernel optimizati"
Previous message: Theodore Y. Ts'o: "Re: Proposal: restrict link(2)"
Next in thread: Marek Michalkiewicz: "Re: Proposal: restrict link(2)"
Reply: Marek Michalkiewicz: "Re: Proposal: restrict link(2)"

Date: 13 Dec 1996 23:33:01 -0000
From: rdm@tad.micro.umn.edu

If hardlinks to non-writeable files are prohibitted, then the system
would prevent BetaReport from being updated except by people who are
in both "devel" and "prof", and from being read by anyone outside
"devel". Nested directories could be used to "and" group permission
requirements, and hard links could be used to "or" group permission
requirements.

As things currently stand, someone in "devel" can trivially give
write access to BetaReport to all people in "prof", even if the
intersection of devel and prof is but a small fraction of devel. The
system, as it currently stands, wouldn't even leave a record of who
did this.

So what?

Someone in Devel can trivial give write access to Beta Report merely by
leaving a setgid devel program in their homedirectory.

- Ted

Next message: Michael Meissner: "Re:Possible kernel optimizati"
Previous message: Theodore Y. Ts'o: "Re: Proposal: restrict link(2)"
Next in thread: Marek Michalkiewicz: "Re: Proposal: restrict link(2)"
Reply: Marek Michalkiewicz: "Re: Proposal: restrict link(2)"