Bugtraq mailing list archives

Re: chown, quotas and security

From: mouse () Collatz McRCIM McGill EDU (der Mouse)
Date: Sun, 6 Nov 1994 08:08:11 -0500

[...make chown setuid-root...]

Only in a very trusting environment, where you don't mind if users
chown files they dont own to themselves....

Of course you'd wrap it up or write your own little chown utility
before you made it suid :)

You'd introduce a race condition with a wrapper.  If you wrote your
own chown command, you could do it securely, using fchown..


But that would work only for things for which open() performs no
nontrivial operations; in particular, you couldn't use it to chown
device special files (probably not too much of a problem) or named
pipes (perhaps more of a problem) or UNIX-domain sockets (because they
can't be open()ed at all).

The more I think about this, the more I think it has to be in the
kernel if you want it at all.  Or else you just have to live with the
race condition, which in the case of chown is probably not very severe.

                                        der Mouse

                            mouse () collatz mcrcim mcgill edu

Current thread:

Re: chown, quotas and security Neil Woods (Nov 05)
- <Possible follow-ups>
- Re: chown, quotas and security Neil Woods (Nov 05)
- Re: chown, quotas and security Neil Woods (Nov 05)
- Re: chown, quotas and security der Mouse (Nov 06)