> Jon Lewis:
> > I think this was discussed a few months ago, and some onofficial patches
> > were bounced around. IMO, this sort of hard linking should not be
> > allowed. Consider the following:
> >
> > You have sendmail 8.6.x or 8.7.x (aka sendroot). It's suid.
>
> At that point, you've already lost security on your system. Sorry.
That _is_ the point. If your system is old enough, and you're the
sendmail type, you have had an a copy of sendmail with holes in it, and
with the way hard links are treated, you actually still could have an old
holey setuid copy of sendmail someplace other than where you'd expect it,
even if you rm'd that old one.
------------------------------------------------------------------
Jon Lewis <jlewis@fdt.net> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/hr.
________Finger jlewis@inorganic5.fdt.net for PGP public key_______