home *** CD-ROM | disk | FTP | other *** search
- Newsgroups: comp.os.linux
- Path: sparky!uunet!mcsun!sun4nl!dutrun!donau!zen.et.tudelft.nl!wolff
- From: wolff@zen.et.tudelft.nl (Rogier Wolff)
- Subject: Re: rm Security Problem!
- Message-ID: <1992Nov19.173949.16372@donau.et.tudelft.nl>
- Sender: news@donau.et.tudelft.nl (UseNet News System)
- Nntp-Posting-Host: zen.et.tudelft.nl
- Organization: Delft University of Technology, Dept. of Electrical Engineering
- References: <1992Nov16.133710.20417@r-node.gts.org> <1e8mhlINNcij@matt.ksu.ksu.edu> <1992Nov17.215558.3558@csd.uwe.ac.uk>
- Date: Thu, 19 Nov 1992 17:39:49 GMT
- Lines: 27
-
- root@slave.uwe.ac.uk (Operator (Phil/Dylan)) writes:
-
- >In article <1e8mhlINNcij@matt.ksu.ksu.edu>, probreak@matt.ksu.ksu.edu (James
- >Michael Chacon) writes:
- >|> tfoley@r-node.gts.org (Tim Foley) writes:
- >|>
- >|> >
- >|> > Logged in as *anyone* I can delete *almosy any file* with the rm
- >|> >command, it just comes up and asks 'override mode 0600' or whatever
- >|> >and away it goes! I was able to delete copies of my passwd and inittab
-
- How about checking the permissions on the directories. If they are
- write for everybody, you are according to standard unix conventions
- allowed to delete files that you don't need access to.
-
- I.e.
- ls -ld /tmp/file /tmp
- drwxrwxrwx 5 root root 576 Nov 19 18:38 /tmp
- -rw------- 1 rogier users 0 Nov 19 18:38 file
-
- In this case anybody can delete "file" either by answering yes to the
- override question or specifying -f on the command line.
-
- Roger
- --
- **** a 486 in V86 mode is like a VW buggy with a 6 litre V12 motor. ****
- EMail: wolff@duteca.et.tudelft.nl ** Tel +31-15-783644 or +31-15-142371
-
