Date: Thu, 31 Jan 2002 16:31:41 +1100 From: Edwin Groothuis <edwin@mavetju.org> To: Matt Sykes <mattmsykes@yahoo.co.uk> Cc: freebsd-questions@freebsd.org Subject: Re: able to delete root-owned files as non-root Message-ID: <20020131163141.F823@k7.mavetju.org> In-Reply-To: <20020131052920.1495.qmail@web21007.mail.yahoo.com>; from mattmsykes@yahoo.co.uk on Thu, Jan 31, 2002 at 05:29:20AM %2B0000 References: <20020131052920.1495.qmail@web21007.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Jan 31, 2002 at 05:29:20AM +0000, Matt Sykes wrote: > xerxes:~> whoami > sykes > xerxes:~> ll testfile > -rw-r--r-- 1 root wheel 0 Jan 31 00:23 testfile > xerxes:~> rm testfile > override rw-r--r-- root/wheel for testfile? y > xerxes:~> ll testfile > ls: testfile: No such file or directory > > Big security problem. > > This should never ever happen. > > I am unable to find any documentation explaining this. > > I checked and my UID isn't 0. and who owned the directory you were deleting in? Edwin -- Edwin Groothuis | Personal website: http://www.MavEtJu.org edwin@mavetju.org | Interested in MUDs? Visit Fatal Dimensions: ------------------+ http://www.FatalDimensions.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020131163141.F823>