On Saturday 17 April 2004 01:33, Bernd Eckenfels wrote: > In article <[EMAIL PROTECTED]> you wrote: > > -rwsr-xr-x 1 root root 22460 Oct 1 2001 /usr/bin/crontab > > > > yes, because only in this condition normal user can set crontab rules. > > this deends on the cron used. The cron in qustion needs to restrict the > access to the spool directory because it is shared. One could change the > owner of the crontab file, but then it is hard to atomically replace the > file without write access to the spool dir. The best solution is to have > the crontab in a user owned directory.
That sounds good! > > It is not a good idea to change this without having a close look at the > cron code in question. It might be much better to use another cron flavor. What are the secure alternatives? Thanks, Mario
