Newsgroups: comp.os.minix
Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!batcomputer!cornell!uw-beaver!ubc-cs!alberta!ncc!isagate!darius
From: darius@edm.isac.CA (Darius S. Naqvi)
Subject: Re: Security hole ?!
Reply-To: darius@edm.isac.ca (Darius S. Naqvi)
Organization: ISA Corporation, Edmonton, AB
Date: Thu, 11 Apr 91 23:31:07 GMT
Message-ID: <1991Apr11.233107.3360@edm.isac.CA>
References: <50276@nigel.ee.udel.edu>

In article <50276@nigel.ee.udel.edu> Christoph van Wuellen <HBO043%DJUKFA11.BITNET@cunyvm.cuny.edu> writes:
>The ability of removing a file has nothing to do with permissions set
>on the file, but with permissions set on the directory where the file
>resides:
>When you remove a file, you actually write to its parent directory.
>
>On UNIX, you can e.g. remove files beloging to other users if they reside
>in /tmp
>
This is the case on all the UNIXes that I have seen, except SCO UNIX.
It has some extra security garbage that is a real pain, plus it just
insists on doing some things differently than everyone else.  As one
example, you CANNOT remove other user's files residing in /tmp.


-- 
Darius S. Naqvi                    mail:darius@edm.isac.ca
ISA Corp.                          uucp:{uunet,alberta}!ncc!isagate!darius
Edmonton, Alberta, Canada         phone:(403) 420-8081