current-users: Re: install/15461: /var/spool/lock: inconvenient permissions

Subject: Re: install/15461: /var/spool/lock: inconvenient permissions
To: current-users@netbsd.org <current-users@netbsd.org>
From: David Laight <david@l8s.co.uk>
List: current-users
Date: 02/02/2002 14:42:56

Ingolf Steinbach wrote:
> 
> >Number:         15461
> >Category:       install
> >Synopsis:       /var/spool/lock has inconvenient permissions
> >Confidential:   no
> >Severity:       non-critical
> >Priority:       low
> >Responsible:    install-manager
> >State:          open
> >Class:          change-request
> >Submitter-Id:   net
> >Arrival-Date:   Sat Feb 02 04:46:00 PST 2002
> >Closed-Date:
> >Last-Modified:
> >Originator:     Ingolf Steinbach
> >Release:        NetBSD 1.5.3_ALPHA
> >Organization:
> none

>         The /var/spool/lock directory is installed with write permissions
>         for user uucp only (mode 0755, owner uucp:daemon). As there are
>         not only uucp related directories in /var/spool, other daemons
>         (e.g. a news or ftp daemon) should be able to acquire locks in
>         this directory, too.
> 
>         Better permissions would be mode 0775 and maybe owner
>         daemon:daemon.

Why not 1777 - so that the (lock) files can only be deleted by the
owning user?

	David