Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!sample.eng.ohio-state.edu!purdue!haven.umd.edu!mimsy!nocusuhs!nmrdc1!minixug!arrakis!bert
From: bert@arrakis.nl.mugnet.org (Bert Laverman)
Newsgroups: comp.os.minix
Subject: Re: gak! yet another idiot beginner asking stupid stuff!
Message-ID: <9105102589@arrakis.nl.mugnet.org>
Date: 10 May 91 10:12:23 GMT
References: <9852@star.cs.vu.nl>
Organization: Alphasoft Nederland
Lines: 21

In article <9852@star.cs.vu.nl>, gpvos@cs.vu.nl (Gerben 'P' Vos) wrote:
> jhensley@isis.cs.du.edu (John 'Hawg' Hensley) writes:
>> [ description of need for world-writable mboxes ]
> Maybe you can apply the sticky directories patch and make /usr/spool/mail
> sticky, so anyone can write and create files, but only the owner of a file
> (and root) can remove it.
> Would this work? Is this The Right Thing to do?
It probably would work, but it's _not_ the way to go. /usr/bin/mail is
(or should be) setuid root, and can therefore create and access all mailboxes
without any problems. It also chowns them to their owner, so with -rw-------
access, only the owner of a mailbox can read it.

> Any other directories that would be a candidate for becoming sticky, apart
> from this one and /tmp?
How about /usr/tmp? ;-)

Greetings, Bert

=====================================================================
    Bert Laverman		email: bert@arrakis.nl.mugnet.org
    tel.:  +31 50 - 733587	   or: laverman@cs.rug.nl
=====================================================================