Path: utzoo!utgpu!jarvis.csri.toronto.edu!cs.utexas.edu!tut.cis.ohio-state.edu!snorkelwacker!bloom-beacon!bu.edu!bu-it!budd
From: budd@bu-it.bu.edu (Phil Budne)
Newsgroups: comp.unix.wizards
Subject: Re: SUID directories -- security concern?
Message-ID: <53396@bu.edu.bu.edu>
Date: 6 Mar 90 10:49:18 GMT
References: <13946@phoenix.Princeton.EDU> <1401@mitisft.Convergent.COM> <2960@auspex.auspex.com>
Sender: news@bu.edu.bu.edu
Reply-To: budd@bu-it.bu.edu (Phil Budne)
Followup-To: comp.unix.wizards
Organization: Information Technology, Boston University, Boston, MA, USA
Lines: 8

In article <2960@auspex.auspex.com> guy@auspex.auspex.com (Guy Harris) writes:
>V.4 uses the setGid bit on directories to get BSD-style file creation
>semantics for files in that directory (SunOS 4.x-style).

Therefore by logical extension SUID on a directory should cause the
newly created files to take on the UID of the directory!

	-Phil Budne, Boston University