Subject: chown, quotas and security
To: None <email@example.com>
From: Gordon W. Ross <firstname.lastname@example.org>
Date: 11/08/1994 12:27:12
> Date: Mon, 07 Nov 1994 16:58:56 -0500
> From: "Chris G. Demetriou" <email@example.com>
> [ allowing chown() to normal users ... ]
> It's just _not_ a good idea, regardless of whether or not quotas are on.
Agreed. Also, the people that think they need it can usually get by
with a locally-created suid program that allows a specific set of
users to set file ownership to a specific set of (safe) values.