2010/12/21 Miloslav Trmač: > If an attacker were controlling a process running with uid 0 and no > capabilities at all, and /bin/sh were 0555, nothing prevents the > attacker from chmod()ing /bin/sh to 0755 and overwriting it. This makes > any attempts to change the file permissions rather pointless. >
You don't even need to change permissions for root to be able to delete or change the contents of the directory. Dick
-- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel