Date: Thu, 12 Sep 2002 22:31:22 -0700 From: "Gary D. Kline" <kline@thought.org> To: Dan Nelson <dnelson@allantgroup.com> Cc: "Gary D. Kline" <kline@thought.org>, FreeBSD Mailing List <freebsd-questions@FreeBSD.ORG> Subject: Re: can't rm -f /var/empty:: a new feature for 4.7? Message-ID: <20020913053122.GA3220@tao.thought.org> In-Reply-To: <20020913051046.GJ42486@dan.emsphone.com> References: <200209130501.g8D51EK01185@tao.thought.org> <20020913051046.GJ42486@dan.emsphone.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Sep 13, 2002 at 12:10:46AM -0500, Dan Nelson wrote: > In the last episode (Sep 12), Gary D. Kline said: > > While running mergemaster with "t" to /tmp, I created a > > /var/tmp/empty. All are dirs, and "empty" is mode "dr-". Not even > > root can chmod or rmdir. I may be wrong, but the index node does > > no seem to point to itself. Any ideas on what's going on? How to > > remove? This is more of a HUH, WHAT THE HELL? than anything. I'm > > stumped. It this a new security feature in 4.7PRE? > > You probably mean /tmp/var/empty ? I believe sshd chroots itself in > there for some operations. It's flagged schg so root can't even do > anything with it. Run "chflags noschg /tmp/var/empty" to remove the > flag. > That was is, thanks muchly. Right: /tmp/var/empty. [no]schg complete vanished from my memory; I was checking things like kern_securelevel.... (i thought there was a flag to ls to show changed flags but couldn't/can't see it. ... this has been a long century :-) gary -- Gary Kline kline@thought.org www.thought.org Public service Unix To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020913053122.GA3220>