Nasty Security Hole?
Gordon Cross
crossgl at ingr.UUCP
Fri Nov 18 07:37:24 AEST 1988
In article <189 at wyn386.UUCP>, mikef at wyn386.UUCP (Mike Faber) writes:
>
> Why can a person with read permission only be able to remove the file?
If you have write access to a directory, you can remove any file it contains
regardless of the permissions set for that file. This "feature" is not a
security hole even though it would seem so. I have never liked the way it
works either since I occasionally desire to protect a file from accidental
deletion (as one can under VMS). At least rm does ask...
Gordon Cross
Intergraph Corp. Huntsville, AL
...uunet!ingr!crossgl
More information about the Comp.unix.wizards
mailing list