Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!mips!pacbell.com!att!princeton!phoenix.Princeton.EDU!pfalstad
From: pfalstad@phoenix.Princeton.EDU (Paul Falstad)
Newsgroups: comp.unix.admin
Subject: Re: Possible security problem, need information...
Message-ID: <7380@idunno.Princeton.EDU>
Date: 21 Mar 91 05:36:03 GMT
References: <1991Mar18.200957.166@gacvx2.gac.edu> <1991Mar20.165442.7210@ux1.cso.uiuc.edu> <1991Mar20.234927.20082@athena.mit.edu>
Sender: news@idunno.Princeton.EDU
Organization: League For Fighting Chartered Accountancy
Lines: 21

jik@athena.mit.edu (Jonathan I. Kamens) wrote:
>To write to a directory, you only need *execute* permission on all the
>directories above it...

% cd /tmp
% mkdir -p foo/bar
% cd foo/bar
% chmod 000 /tmp/foo
% touch fubar
%

It's hard to get to a directory if you don't have execute permission on
all its parents, but once you're there, it doesn't matter.

I'm sure jik knows this, probably just a slip of the finger...  (I
suppressed the urge to say WRONG! WRONG! WRONG! :-)

--
Paul Falstad, pfalstad@phoenix.princeton.edu PLink:HYPNOS GEnie:P.FALSTAD
     To boost the economy, I'd tax all foreigners living abroad.
          Well, at least it's *FRESH* puke!  -Basil Fawlty