chattr certain dirs on Debian? (was Re: rm: cannot unlink `sendmail': Operation not permitted)

To: "John Gonzalez/netMDC admin" <ekool@ns1.netmdc.com>
Cc: <debian-isp@lists.debian.org>
Subject: chattr certain dirs on Debian? (was Re: rm: cannot unlink `sendmail': Operation not permitted)
From: "Jason Lim" <maillist@jasonlim.com>
Date: Fri, 24 May 2002 08:50:43 +1000
Message-id: <[🔎] 039201c202af$f7cf8560$df0210ac@zentekgateway>
Reply-to: "Jason Lim" <maillist@jasonlim.com>
References: <[🔎] 034701c202a7$b455a1a0$df0210ac@zentekgateway> <20020523222236.GB27165@ns1.netmdc.com>

Nope... it wasn't running.

I did a "chattr = sendmail" to remove all flags, and now it works.

[root@linux1 sbin]# lsattr |more
suSiadAc------ ./iconvconfig
suSiadAc------ ./rpcinfo
suSiadAc------ ./zdump
suSiadAc------ ./zic
suSiadAc------ ./pwunconv
suSiadAc------ ./pwck
suSiadAc------ ./glibc_post_upgrade
suSiadAc------ ./mklost+found
suSiadAc------ ./arping
suSiadAc------ ./clockdiff
suSiadAc------ ./ping6

Redhat 7.2 has these by default.

Despite the trouble it caused me earlier, perhaps this is a *GOOD*
thing... it would prevent root from accidentally deleting any critical
system files, and would make hacking/cracking slightly harder (okay...
only slightly, but hey... everything adds up to help).


On a Debian system:
sh-2.05a# lsattr /usr/sbin
-------------- /usr/sbin/locale-gen
-------------- /usr/sbin/dpkg-preconfigure
-------------- /usr/sbin/vchkpw
-------------- /usr/sbin/dpkg-reconfigure


Would this be something we want to do on Debian?

Sincerely,
Jason

----- Original Message -----
From: "John Gonzalez/netMDC admin" <ekool@ns1.netmdc.com>
To: "Jason Lim" <maillist@jasonlim.com>
Sent: Friday, May 24, 2002 8:22 AM
Subject: Re: rm: cannot unlink `sendmail': Operation not permitted


> Is sendmail running?
>
> Do a: ps auxww | grep sendmail
>
> On Fri, May 24, 2002 at 08:16:25AM +1000, Jason Lim wrote:
> > Hi all,
> >
> > This is happening on a Redhat 7.2 system, but i think it would apply
> > across all Linux distros.
> >
> > [root@linux1 sbin]# pwd
> > /usr/sbin
> > [root@linux1 sbin]# chattr -iu sendmail
> > [root@linux1 sbin]# rm sendmail
> > rm: remove `sendmail'? y
> > rm: cannot unlink `sendmail': Operation not permitted
>
> --
> John Gonzalez, Tularosa Communications | (505) 439-0200 work
> JG6416, ASN 11711, johng@tularosa.net  | (505) 443-1228 fax
>       http://www.tularosa.net
>



-- 
To UNSUBSCRIBE, email to debian-isp-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- rm: cannot unlink `sendmail': Operation not permitted
  - From: "Jason Lim" <maillist@jasonlim.com>

Prev by Date: Re: rm: cannot unlink `sendmail': Operation not permitted
Next by Date: Re: rm: cannot unlink `sendmail': Operation not permitted
Previous by thread: Re: rm: cannot unlink `sendmail': Operation not permitted
Next by thread: Re: rm: cannot unlink `sendmail': Operation not permitted
Index(es):
- Date
- Thread