Subject: Re: chown, quotas and security
To: None <mycroft@gnu.ai.mit.edu>
From: David Maxwell <david@spinne.web.net>
List: current-users
Date: 11/07/1994 09:32:57
>
>
> The chown(2) system call turns off the setuid and/or setgid bits as
> appropriate, so this is not a concern.
Actually, I DID test my post on our NetBSD system here to make sure my example
was accurate. On many Unixes I've worked on that allowed chown by non-root
users, yes the setuids were taken off when the file was given away,
however, _root_ was allowed to chown files without the setuid bits being
removed. Since chown was setuid in this case, that could be the problem.
David Maxwell
david@spinne.web.net