Hat Tip to Brian White
Jean-Pierre A. Radley
appl at jpr.com
Tue Mar 27 14:25:59 PDT 2012
Kenneth Brody propounded (on Tue, Mar 27, 2012 at 05:12:43PM -0400):
| On 3/27/2012 4:51 PM, Jay Ashworth wrote:
| > Had to help an ex-coworker figure out why a client of theirs was having
| > "my users own the lockfiles" problems this morning, and an old list
| > posting of Brian's reminded me about the "setperms script does chmod +s
| > before chown" problem, which he found, fixed, and it solved their
| > problem.
|
| I believe this was fixed a long time ago. What version of filePro do they have?
|
| > Hat tip also to Bill for the celestial list archives.
| >
| > Brian: did you ever actually confirm or deny that chown(1) should reset
| > the setuid/gid bits even when run by root?
|
| I thought that only root could run chown? "man chown" includes:
|
| > The ownership of a file may only be altered by a super-user for obvious
| > security reasons.
On OpenServer, chown can be run by the owner of a file but it will strip
setuid & setgid bits (for obvious security reasons).
That's for the default Traditional security mode. I daresay not one
installation in a hundred elects to cwswitch to a more restrictive mode.
--
JP
More information about the Filepro-list
mailing list