Re: again security proposal

Yuri Kuzmenko (yuri@cs.cracksoft.kiev.ua)
Mon, 29 Dec 1997 20:37:47 +0200 (GMT-2)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Yuri Kuzmenko: "Re: again security proposal"
Previous message: mlord: "Re: Race conditions galore (2.0.33 and possibly 2.1.x)"

Hmm. But *generally* this is security hole. And it must be closed on
kernel-vfs level. For exclude standard violations, this must be
confirugable.

On Mon, 29 Dec 1997, [ISO-8859-1] Johan Myréen wrote:

> On Mon, 29 Dec 1997, Yuri Kuzmenko wrote:
>
> > No... See my message. chown must be run from root. This is "standard"
> > operation (changing user uid, etc).
>
> Well, if changing the user id is a "standard" operation (which
> it should not be, if you do some planning), the correct way to
> change ownership of the user's files is the following:
>
> find / -uid 123 -exec chown user {} \; # Old user id = 123
>
> This should be obvious if you think of the semantics of the
> UNIX file system.
>
> --
> Johan Myreen
> jem@iki.fi
>

Next message: Yuri Kuzmenko: "Re: again security proposal"
Previous message: mlord: "Re: Race conditions galore (2.0.33 and possibly 2.1.x)"