Re: unowned processes and who controls them (was: Re: passwd entry for uid -1

To: Oystein Viggen <oysteivi@tihlde.org>
Cc: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>, Robert Bihlmeyer <robbe@orcus.priv.at>, debian-hurd@lists.debian.org
Subject: Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
From: nisse@lysator.liu.se (Niels Möller)
Date: 07 Jun 2001 01:07:00 +0200
Message-id: <[🔎] nny9r5w6ln.fsf@sture.lysator.liu.se>
In-reply-to: Oystein Viggen's message of "06 Jun 2001 23:22:38 +0200"
References: <[🔎] 20010602214206.BF65699306@perdition.linnaean.org> <[🔎] 20010603205104.D4223@212.23.136.22> <[🔎] 87wv6s5pj4.fsf@orcus.priv.at> <[🔎] 20010604215026.D1366@212.23.136.22> <[🔎] 87y9r7knna.fsf@orcus.priv.at> <[🔎] 20010605173251.A5365@212.23.136.22> <[🔎] 03itia9axu.fsf@colargol.tihlde.org> <[🔎] 20010605183437.B5365@212.23.136.22> <[🔎] 03elsy92bg.fsf@colargol.tihlde.org> <[🔎] 20010605211922.B14341@212.23.136.22> <[🔎] nn7kypxsml.fsf@sture.lysator.liu.se> <[🔎] 03g0dd5mn5.fsf@colargol.tihlde.org>

Oystein Viggen <oysteivi@tihlde.org> writes:

> Quoth Niels Möller: 
> 
> > And then have some mechanism for making exceptions to this rule. An
> > example of such a mechanism (which I don't know if it makes sense): If
> > the directory is writable by no-user processes, and if it has the
> > setuid bit set, then the no-user process can create files, and the
> > created files get the same owner as the directory.
> 
> Would this actually make any difference compared do what we have today?
> Anybody would still be able to write to the directory by doing an
> rmauth, potentially filling up the partition or altering data.

The default behaviour would be that the nouser can't create files. But
you could create a directory /tmp/foo, setuid it to user foo, and then
nouser processes could create files there, which get the user foo as
owner. You could set a limited quota for user foo, to prevent the
nouser from filling the disk (assuming we have a quota implementation).

But I don't see any big advantage, compared to simply running the
process in question with userid foo, so I agree that it seems a little
pointless.

/Niels

Reply to:

Follow-Ups:
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Oystein Viggen <oysteivi@tihlde.org>

References:
- Re: passwd entry for uid -1
  - From: Roland McGrath <roland@frob.com>
- Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: passwd entry for uid -1
  - From: Robert Bihlmeyer <robbe@orcus.priv.at>
- Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: passwd entry for uid -1
  - From: Robert Bihlmeyer <robbe@orcus.priv.at>
- Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: passwd entry for uid -1
  - From: Oystein Viggen <oysteivi@tihlde.org>
- unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Oystein Viggen <oysteivi@tihlde.org>
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: nisse@lysator.liu.se (Niels Möller)
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Oystein Viggen <oysteivi@tihlde.org>

Prev by Date: FAT Support
Next by Date: Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
Previous by thread: Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
Next by thread: Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
Index(es):
- Date
- Thread