Deryk Barker wrote:
>
> Thus spake Matt Stegman ([EMAIL PROTECTED]):
>
> > On Fri, 19 May 2000, Brian T. Schellenberger wrote:
> > > ...
> > > > I don't think it's wrong. How would you like to have a user write a
> > > > setuid script and then make you the owner?
> > >
> > > That's *exactly* what *he* should be able to. So long as *I* can't me
> > > me the owner of "his* files, I don't see the problem.
> >
> > So I can:
> >
> > $ cp /bin/sh /tmp/sh
> > $ chmod 4755 /tmp/sh
> > $ chown root /tmp/sh
> > $ /tmp/sh
> > #
> >
> > Is this correct, intended behavior on HP-UX?
You can do all of those steps without any error messages, but it's not a
huge security hole becuase the "chown" automatically turns off the SUID
bit.
> Not to mention the question of quota. Can anyone "give" you a massive
> file and chew up all your remaining quota?
Good point. Yes, as far as I can tell, it will happily let you do this.
I now see that this is more complex than I at first thought, and I am
willing to concede the advantages to the Mandrake/Linux/GNU approach,
though it's not what I expected. Does anybody know the history of this?
--
"Brian, the man from babble-on" [EMAIL PROTECTED]
Brian T. Schellenberger http://www.babbleon.org
Support http://www.eff.org. Support decss defendents.
Support http://www.programming-freedom.org. Boycott amazon.com.
