Gerald Waugh wrote: > Chris is correct, I know it doesn't seem logical, but the owner of a directory > can delete files owned by root, regardles of permissions.... > It's the directory ownership that rules....
It's one of the first thing an administrator learns, and it's quite logical if you think about it the way linux "thinks". Deleting a file is done by simply writing to another file, in this case the file that's logically the directory. If you can write to the directory, yes you can delete the file. BUT... I forgot completely when I made the post that said you could protect yourself that way. Sometimes things that are logical, and correct, are still contra-intuitive. So we forget them <frown>. How about the chattr attribute someone mentioned? I just got back from Internet World 2000, and I'm too tired to do the lookup now... Jeff -- Jeff Lasman <[EMAIL PROTECTED]> Linux and Cobalt/Sun/RaQ Consulting nobaloney.net P. O. Box 52672, Riverside, CA 92517 voice: (909) 778-9980 * fax: (702) 548-9484 _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
