Re: Limiting User Commands

To: Michael Graham <oobermick@yahoo.co.uk>
Cc: debian-user@lists.debian.org
Subject: Re: Limiting User Commands
From: Joost Witteveen <joostje@iliana.nl>
Date: Mon, 15 Nov 2004 14:56:52 +0100
Message-id: <[🔎] 4198B5A4.5060903@iliana.nl>
In-reply-to: <[🔎] pan.2004.11.15.00.42.44.24353@yahoo.co.uk>
References: <[🔎] pan.2004.11.09.19.15.00.669836@yahoo.co.uk> <[🔎] 20041109195834.D704714BD58@pastinakel.tue.nl> <[🔎] pan.2004.11.15.00.42.44.24353@yahoo.co.uk>

Michael Graham wrote:


/tmp/test$ ll
total 0
-rw-r--r--  1 root root 0 2004-11-15 00:36 test

/tmp/test$ ll -d ../test/
drwxr-xr-t  2 mick mick 4.0K 2004-11-15 00:36 ../test/

/tmp/test$ rm test
rm: remove write-protected regular empty file `test'? y
/tmp/test$ ll
total 0

But according to the man page of chmod I shouldn't be able to do this:


Interesting. I notice that after a `chown root:root /tmp/test', the file
/tmp/test/test cannot be removed any more by the normal user.

So, I suppose the fact that mick can remove the file /tmp/test/test isrelated to the fact that /tmp/test is owned by mick (or 'joostje' in mycase).

There is some logic to it, because if the kernel didn't allow mick toremove /tmp/test/test, mick could simply first run

  chmod u-t /tmp/test
and then repeat the rm /tmp/test/test successfully.

--
Groetjes
joostje
47d3fcfe28f2a83497e79d9bc7d5087c-4a1ee1fddab4648175518cb4c1c9edb3ed0e89f0

Reply to:

References:
- Re: Limiting User Commands
  - From: Michael Graham <oobermick@yahoo.co.uk>
- RE: Limiting User Commands
  - From: "Dan Roozemond" <dan+debian@banaan.org>
- RE: Limiting User Commands
  - From: Michael Graham <oobermick@yahoo.co.uk>

Prev by Date: Re: Debian and spam
Next by Date: Re: gaim encryption fails to compile
Previous by thread: RE: Limiting User Commands
Next by thread: Re: Limiting User Commands
Index(es):
- Date
- Thread