setuid not working on directories, or am I doing something wrong?
$ whoami wmoran $ mkdir test2 $ sudo chown daemon:daemon test2 $ sudo chmod 6777 test2 $ ls -lah | grep test2 drwsrwsrwx 2 daemon daemon 512B Jul 25 07:40 test2 $ touch test2/testfile.empty $ ls -lah test2 total 8 drwsrwsrwx 2 daemon daemon 512B Jul 25 07:41 . drwxr-xr-x 59 wmoran wheel6.0K Jul 25 07:40 .. -rw-r--r-- 1 wmoran daemon 0B Jul 25 07:41 testfile.empty Shouldn't testfile.empty show up as daemon:daemon? or am I misunderstanding something about how setuid works? This is on FreeBSD 7, but I observe the same thing on 6.3 and 6.2. -- Bill Moran Collaborative Fusion Inc. http://people.collaborativefusion.com/~wmoran/ [EMAIL PROTECTED] Phone: 412-422-3463x4023 IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: setuid not working on directories, or am I doing something wrong?
Give me the output of 'mount' please. Thanks Subhro On Fri, Jul 25, 2008 at 5:15 PM, Bill Moran [EMAIL PROTECTED] wrote: $ whoami wmoran $ mkdir test2 $ sudo chown daemon:daemon test2 $ sudo chmod 6777 test2 $ ls -lah | grep test2 drwsrwsrwx 2 daemon daemon 512B Jul 25 07:40 test2 $ touch test2/testfile.empty $ ls -lah test2 total 8 drwsrwsrwx 2 daemon daemon 512B Jul 25 07:41 . drwxr-xr-x 59 wmoran wheel6.0K Jul 25 07:40 .. -rw-r--r-- 1 wmoran daemon 0B Jul 25 07:41 testfile.empty Shouldn't testfile.empty show up as daemon:daemon? or am I misunderstanding something about how setuid works? This is on FreeBSD 7, but I observe the same thing on 6.3 and 6.2. -- Bill Moran Collaborative Fusion Inc. http://people.collaborativefusion.com/~wmoran/ [EMAIL PROTECTED] Phone: 412-422-3463x4023 IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- WC Fields - A rich man is nothing but a poor man with money. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: setuid not working on directories, or am I doing something wrong?
In response to Subhro [EMAIL PROTECTED]: Give me the output of 'mount' please. In the example detailed below: $ mount /dev/ad4s1a on / (ufs, local) devfs on /dev (devfs, local) /dev/ad4s1e on /tmp (ufs, local, soft-updates) /dev/ad4s1f on /usr (ufs, local, soft-updates) /dev/ad4s1d on /var (ufs, local, soft-updates) procfs on /proc (procfs, local) This was in my home directory, which is /usr/home/wmoran Again, the behaviour persists across at least three machines (this one with 7.0, and two others with 6.X). On Fri, Jul 25, 2008 at 5:15 PM, Bill Moran [EMAIL PROTECTED] wrote: $ whoami wmoran $ mkdir test2 $ sudo chown daemon:daemon test2 $ sudo chmod 6777 test2 $ ls -lah | grep test2 drwsrwsrwx 2 daemon daemon 512B Jul 25 07:40 test2 $ touch test2/testfile.empty $ ls -lah test2 total 8 drwsrwsrwx 2 daemon daemon 512B Jul 25 07:41 . drwxr-xr-x 59 wmoran wheel6.0K Jul 25 07:40 .. -rw-r--r-- 1 wmoran daemon 0B Jul 25 07:41 testfile.empty Shouldn't testfile.empty show up as daemon:daemon? or am I misunderstanding something about how setuid works? This is on FreeBSD 7, but I observe the same thing on 6.3 and 6.2. -- Bill Moran Collaborative Fusion Inc. http://people.collaborativefusion.com/~wmoran/ [EMAIL PROTECTED] Phone: 412-422-3463x4023 IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- WC Fields - A rich man is nothing but a poor man with money. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Bill Moran Collaborative Fusion Inc. http://people.collaborativefusion.com/~wmoran/ [EMAIL PROTECTED] Phone: 412-422-3463x4023 IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: setuid not working on directories, or am I doing something wrong?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Bill Moran wrote: | $ whoami | wmoran | $ mkdir test2 | $ sudo chown daemon:daemon test2 | $ sudo chmod 6777 test2 | $ ls -lah | grep test2 | drwsrwsrwx 2 daemon daemon 512B Jul 25 07:40 test2 | $ touch test2/testfile.empty | $ ls -lah test2 | total 8 | drwsrwsrwx 2 daemon daemon 512B Jul 25 07:41 . | drwxr-xr-x 59 wmoran wheel6.0K Jul 25 07:40 .. | -rw-r--r-- 1 wmoran daemon 0B Jul 25 07:41 testfile.empty | | Shouldn't testfile.empty show up as daemon:daemon? or am I | misunderstanding something about how setuid works? | | This is on FreeBSD 7, but I observe the same thing on 6.3 and 6.2. | Hi Bill, ~From what I've read, you have to take some extra steps to get this to work. First, visit this page and search for suiddir: http://www.freebsd.org/cgi/man.cgi?query=mountsektion=8apropos=0manpath=FreeBSD+7.0-RELEASE I believe you have to run a kernel with the SUIDDIR option enabled, and then you have to mount your filesystem with the suiddir option, as described in the mount man page above. Let us know if that works for you or not. Best regards, Greg - -- Greg Larkin http://www.sourcehosting.net/ http://www.FreeBSD.org/ - The Power To Serve -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIics70sRouByUApARAnZbAJ9UK/3OA6Q9m4TIk6vnzT8Hrx4P+wCgnkw2 JaLLa7Lp7Y8v2Jm04qSWC1I= =WC5T -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: setuid not working on directories, or am I doing something wrong?
In response to Greg Larkin [EMAIL PROTECTED]: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Bill Moran wrote: | $ whoami | wmoran | $ mkdir test2 | $ sudo chown daemon:daemon test2 | $ sudo chmod 6777 test2 | $ ls -lah | grep test2 | drwsrwsrwx 2 daemon daemon 512B Jul 25 07:40 test2 | $ touch test2/testfile.empty | $ ls -lah test2 | total 8 | drwsrwsrwx 2 daemon daemon 512B Jul 25 07:41 . | drwxr-xr-x 59 wmoran wheel6.0K Jul 25 07:40 .. | -rw-r--r-- 1 wmoran daemon 0B Jul 25 07:41 testfile.empty | | Shouldn't testfile.empty show up as daemon:daemon? or am I | misunderstanding something about how setuid works? | | This is on FreeBSD 7, but I observe the same thing on 6.3 and 6.2. | Hi Bill, ~From what I've read, you have to take some extra steps to get this to work. First, visit this page and search for suiddir: http://www.freebsd.org/cgi/man.cgi?query=mountsektion=8apropos=0manpath=FreeBSD+7.0-RELEASE I believe you have to run a kernel with the SUIDDIR option enabled, and then you have to mount your filesystem with the suiddir option, as described in the mount man page above. Let us know if that works for you or not. That explains it, Greg. Thanks for the feedback. -- Bill Moran Collaborative Fusion Inc. http://people.collaborativefusion.com/~wmoran/ [EMAIL PROTECTED] Phone: 412-422-3463x4023 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
