Xref: utzoo comp.unix.questions:20901 comp.sys.sequent:527
Path: utzoo!utgpu!news-server.csri.toronto.edu!mailrus!cs.utexas.edu!uunet!mcsun!ukc!icdoc!syma!andy
From: andy@syma.sussex.ac.uk (Andy Clews)
Newsgroups: comp.unix.questions,comp.sys.sequent
Subject: Allowing users to remove files in /usr/spool/at
Message-ID: <2409@syma.sussex.ac.uk>
Date: 27 Mar 90 11:10:20 GMT
Organization: University of Sussex
Lines: 19

I work on a Sequent Symmetry S81 running DYNIX 3.0.15. My question
could, however, apply to any UN*X box.

I recently set up a command (atq) which lists, in a `friendly' format, the
jobs waiting in /usr/spool/at (i.e. files produced by the "at" command).
I would like to expand the command to enable users to cancel their
own jobs - i.e. remove their own files in /usr/spool/at.

Files in this directory are owned and writeable by the people who gave
the corresponding "at" command, but because /usr/spool/at can only at
present be written by root, users cannot delete their own "at" files.

Can anyone suggest a way in which I can give this sort of access to
/usr/spool/at without compromising system security by allowing the world
to write to it? I'm a bit wary of creating a setuid'd program to do it.

-- 
Andy Clews, Computing Service, Univ. of Sussex, Brighton BN1 9QN, England
JANET: andy@syma.sussex.ac.uk   BITNET: andy%syma.sussex.ac.uk@uk.ac