Xref: utzoo comp.unix.wizards:7093 comp.bugs.sys5:374
Path: utzoo!mnetor!uunet!husc6!mailrus!nrl-cmf!ames!pacbell!att-ih!ihnp4!pegasus!hansen
From: hansen@pegasus.UUCP (Tony L. Hansen)
Newsgroups: comp.unix.wizards,comp.bugs.sys5
Subject: Re: Guide to writing secure setuid programs?
Message-ID: <3098@pegasus.UUCP>
Date: 15 Mar 88 19:21:14 GMT
References: <181@wsccs.UUCP> <722@rivm05.UUCP> <1037@woton.UUCP> <700@virginia.acc.virginia.edu> <7616@oberon.USC.EDU> <8468@eddie.MIT.EDU>
Reply-To: hansen@pegasus.UUCP (XT1554000-Tony L. Hansen;LZ 3B-315;6243)
Organization: AT&T Information Systems, Lincroft, NJ
Lines: 11
Keywords: sticky bit, directories, security
Summary: System V release 3.2 introduced sticky bit directories

<	3. Remove files from the directory.
<
< #3 can be absolutely prevented on BSD 4.3 systems by setting the sticky
< bit (mode 1733) on the directory.

This enhancement was also put into System V release 3.2. Also, the /tmp and
/usr/tmp directories are shipped as mode 1777. This was just one of the
modifications made in that release to make the UNIX System more secure.

					Tony Hansen
				ihnp4!pegasus!hansen, attmail!tony