Subject: Re: Making setuid files immutable
To: Manuel Bouyer <>
From: Andrew Brown <>
List: tech-security
Date: 01/15/1999 13:03:53
>> You'd probably want more than just setuid files as immutable.  On my
>> system, the following are immutable :
>> [list of file]
>Remember to mark immutable the directories too, or the hacxker can
>still mv the file and install a new one.

bzzt!  nope.  mv-ing the file would require a change to the inode,
which ain't allowed.

of course...they could always move the entire directory...

|-----< "CODE WARRIOR" >-----|             * "ah!  i see you have the internet (Andrew Brown)                that goes *ping*!"       * "information is power -- share the wealth."