From owner-freebsd-bugs Thu Feb 8 14:23:06 1996 Return-Path: owner-bugs Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id OAA03734 for bugs-outgoing; Thu, 8 Feb 1996 14:23:06 -0800 (PST) Received: from mail.cs.tu-berlin.de (root@mail.cs.tu-berlin.de [130.149.17.13]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id OAA03701 Thu, 8 Feb 1996 14:22:45 -0800 (PST) Received: from caramba.cs.tu-berlin.de (wosch@caramba.cs.tu-berlin.de [130.149.17.12]) by mail.cs.tu-berlin.de (8.6.12/8.6.12) with ESMTP id XAA05555; Thu, 8 Feb 1996 23:07:14 +0100 Received: (from wosch@localhost) by localhost (8.6.9/8.6.9) id RAA01482; Thu, 8 Feb 1996 17:33:13 +0100 Date: Thu, 8 Feb 1996 17:33:13 +0100 From: Wolfram Schneider Message-Id: <199602081633.RAA01482@localhost> To: Peter Wemm Cc: Paul Traina , freebsd-bugs@freefall.freebsd.org Subject: Re: kern/679 In-Reply-To: <199602080413.MAA11493@jhome.DIALix.COM> References: <199602071717.JAA12960@freefall.freebsd.org> <199602080413.MAA11493@jhome.DIALix.COM> Reply-to: Wolfram Schneider MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-bugs@FreeBSD.ORG Precedence: bulk Peter Wemm writes: >>Synopsis: chown(2) ignores set-user-id and set-group-id bits for root >>This looks appropriate to me and is more in line with the UNIX standard. >>Peter - would you care to verify my opinion before this is changed? > >I tend to agree. "Root knows what he's doing" is a pretty fundamental >design "feature". My brain-damaged sysop at work change the owner of a file hierarchy with cron because solaris has no group quota. Everyone with write access in this file system can break a account, just do $ cp /bin/sh . $ chown u+s sh [wait a hour for cron] $ ./sh >Paul Traina >Let's go with whatever POSIX says and be done with it. I remember POSIX says for this special case 'undefined'. I think we should made a compile option, e.g. CHOWN_COMPAT (SysV) or CHOWN_SECURE (SCO). Wolfram