Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!usc!nic.csu.net!csun!kithrup!sef
From: sef@kithrup.COM (Sean Eric Fagan)
Newsgroups: comp.unix.admin
Subject: Re: Possible security problem, need information...
Message-ID: <1991Mar19.194216.5763@kithrup.COM>
Date: 19 Mar 91 19:42:16 GMT
References: <1991Mar18.200957.166@gacvx2.gac.edu> <1991Mar19.151145.11208@decuac.dec.com>
Organization: Kithrup Enterprises, Ltd.
Lines: 14

In article <1991Mar19.151145.11208@decuac.dec.com> mjr@hussar.dco.dec.com (Marcus J. Ranum) writes:
>>"ls -ld /" is "drwxrwxrwt".
>	mv /bin /...

Won't work. Notice the sticky-bit is set on /.  That means you cannot delete
or rename files that you do not own.  You can create new files and
directories in /, but that's about it.  So it's less insecure than it
appears.

-- 
Sean Eric Fagan  | "I made the universe, but please don't blame me for it;
sef@kithrup.COM  |  I had a bellyache at the time."
-----------------+           -- The Turtle (Stephen King, _It_)
Any opinions expressed are my own, and generally unpopular with others.