Path: utzoo!utgpu!watmath!clyde!att!pacbell!ames!mailrus!cwjcc!hal!ncoast!allbery From: allbery@ncoast.UUCP (Brandon S. Allbery) Newsgroups: comp.unix.wizards Subject: Re: rm etc. (was: Nasty Security Hole?) Message-ID: <13193@ncoast.UUCP> Date: 30 Nov 88 01:04:06 GMT References: <175@ernie.NECAM.COM> <189@wyn386.UUCP> <8910@smoke.BRL.MIL> <118@hudson.Morgan.COM> <8941@smoke.BRL.MIL> <480@auspex.UUCP> <8956@smoke.BRL.MIL> <730@quintus.UUCP> Reply-To: allbery@ncoast.UUCP (Brandon S. Allbery) Followup-To: comp.unix.wizards Distribution: na Organization: Cleveland Public Access UN*X, Cleveland, Oh Lines: 38 As quoted from <730@quintus.UUCP> by ok@quintus.uucp (Richard A. O'Keefe): +--------------- | In article <8956@smoke.BRL.MIL> gwyn@brl.arpa (Doug Gwyn (VLD/VMB) ) writes: | >In article <480@auspex.UUCP> guy@auspex.UUCP (Guy Harris) writes: | >->A utility such as "rm" COULD perform extra checks based on the permissions | >-So does the System V Release 3.1 one, and, if I remember correctly, so | >-did the V7 and perhaps even the V6 one; one can hardly flame Berkeley | >-for this one. | >But I think it was Berkeley who decided to prompt with a completely | >misleading question! I've known others who disliked this. | | Hmm. Let's compare 4.2BSD and V.2 on a Sequent: | % cp /dev/null zabbo | % chmod 000 zabbo | % att rm zabbo | zabbo: 0 mode ? n | % bsd rm zabbo | rm: override protection 0 for zabbo? n +--------------- If UUNET is any guide, V.2 on Sequents isn't. $ >foo $ chmod 0 foo $ rm foo rm: remove foo? n $ _ I've seen the above on quite a few systems of V.2, V.3, and Xenix 5.x pursuasions. ++Brandon -- Brandon S. Allbery, comp.sources.misc moderator and one admin of ncoast PA UN*X uunet!hal.cwru.edu!ncoast!allbery ncoast!allbery@hal.cwru.edu allberyb@skybridge.sdi.cwru.edu allbery@uunet.uu.net comp.sources.misc is moving off ncoast -- please do NOT send submissions direct Send comp.sources.misc submissions to comp-sources-misc@.