Subject: Re: chown, quotas and security
To: None <email@example.com>
From: David Maxwell <firstname.lastname@example.org>
Date: 11/07/1994 09:32:57
> The chown(2) system call turns off the setuid and/or setgid bits as
> appropriate, so this is not a concern.
Actually, I DID test my post on our NetBSD system here to make sure my example
was accurate. On many Unixes I've worked on that allowed chown by non-root
users, yes the setuids were taken off when the file was given away,
however, _root_ was allowed to chown files without the setuid bits being
removed. Since chown was setuid in this case, that could be the problem.