Re: Proposal: restrict link(2)

Adam D. Bradley (bradley@cs.unca.edu)
Mon, 16 Dec 1996 21:28:07 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Miguel de Icaza: "Re: Possible kernel optimization"
Previous message: Alexander G. Burchell: "Re: Proposal: restrict link(2)"
In reply to: Marek Michalkiewicz: "Re: Proposal: restrict link(2)"
Next in thread: Richard Gooch: "Re: Proposal: restrict link(2)"

> I don't see any good reasons why ordinary users should be allowed
> to set set[ug]id bits. Perhaps that should be disallowed (at least
> as an option)? Would it break any standards?

I use SUID for some CGI..allows a program, executed by "nobody", to
create and write logfiles in my directories that are mine with mode "600".
Making them "666" (and the dir 777) so "nobody" can write is unacceptable,
and as a "joe-average user", I can't do any fancy httpd-group magic.

example: ADBLOG, http://www.cs.unca.edu/~bradley/adblog/

Adam

--
He feeds on ashes; a deluded mind has led him    Adam Bradley, UNCA Senior
astray, and he cannot deliver himself or say,             Computer Science
"Is there not a lie in my right hand?"   Isaiah 44:20
        bradley@cs.unca.edu       http://www.cs.unca.edu/~bradley      <><

Next message: Miguel de Icaza: "Re: Possible kernel optimization"
Previous message: Alexander G. Burchell: "Re: Proposal: restrict link(2)"
In reply to: Marek Michalkiewicz: "Re: Proposal: restrict link(2)"
Next in thread: Richard Gooch: "Re: Proposal: restrict link(2)"