Re: Permissions
- From: Geoff Clare <geoff@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 07 Nov 2006 13:38:40 +0000
Sven Mascheck <cus.p.mascheck@xxxxxxxxxxxxxxx> wrote, on Tue, 07 Nov 2006:
2. Directories[snip]
sticky bit:
* [SVID4] well known appliance in /tmp:
directory entries can only be removed if the user owns the
entry or the directory or if the file is writable for him.
Are you sure that's what SVID4 says? It doesn't match the SUSv3
requirements. This is from XBD6 4.2 Directory Protection:
If a directory is writable and the mode bit S_ISVTX is set on the
directory, a process may remove or rename files within that directory
only if one or more of the following is true:
* The effective user ID of the process is the same as that of the
owner ID of the file.
* The effective user ID of the process is the same as that of the
owner ID of the directory.
* The process has appropriate privileges.
and this from the unlink() ERRORS section:
[EPERM] or [EACCES]
The S_ISVTX flag is set on the directory containing the file
referred to by the path argument and the caller is not the file
owner, nor is the caller the directory owner, nor does the caller
have appropriate privileges.
--
Geoff Clare <netnews@xxxxxxxxxxxxx>
.
- Follow-Ups:
- Re: Permissions
- From: Sven Mascheck
- Re: Permissions
- References:
- Permissions
- From: Stu
- Re: Permissions
- From: Stephane CHAZELAS
- Re: Permissions
- From: Stu
- Re: Permissions
- From: Stephane CHAZELAS
- Re: Permissions
- From: Geoff Clare
- Re: Permissions
- From: Sven Mascheck
- Permissions
- Prev by Date: Re: setting 'set -x' for just one command
- Next by Date: Bourne String Substitution Question
- Previous by thread: Re: Permissions
- Next by thread: Re: Permissions
- Index(es):
Relevant Pages
|
