[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: nobody is 777 ?



On Thu, 24 Feb 2000, Ben-Nes Michael wrote:

> ok ill ask it other way.
> I want to give to a file permission so all people could write on it and
> execute it.
> Is it matter who will be the owner of the file ?

not really, as long as it's not a file TRUSTED by root. like you don't
want to have a file that runs in a root cron job to be written by
all. someone on the system edits it to do something very evil and delete
itself, the cronjob hits, all hell breaks loose and the file is not even
there with evidence as to what happend and who done it. oldest trick in
the book.


=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il