I notice my security fix for circumvention of append only files, is still
not in the pre-2.0.31 patches. This puzzles me since a fix for
circumvention of immutable files IS included. I thought you merely whisper
"security hole" in the linux world, and things happen fast ;-)
I personally find it a useful auditing tool to be able to give a user
write access to file, but in such a way that he/she can only append things
to it. Knowing that they can arbitrarily 'cheat' around this by
O_TRUNC'ing the file is annoying.
Please; if the (exceedinly small) patch is deficient in any way, I will be
happy to put in the time to address/fix problems with it.
Fix for 2.1.x is already on www.linuxhq.com, with my 2.0.30 patch to no
doubt arrive on it soon.
Comments?
Chris