Date: Mon, 07 Jul 2003 12:12:03 -0400 From: Bill Moran <wmoran@potentialtech.com> To: quadrant <quadrant@apex.homedns.org> Cc: freebsd-questions@freebsd.org Subject: Re: /var/mail question Message-ID: <3F099BD3.8030403@potentialtech.com> In-Reply-To: <200307071159.51505.quadrant@apex.homedns.org> References: <200307071159.51505.quadrant@apex.homedns.org>
next in thread | previous in thread | raw e-mail | index | archive | help
quadrant wrote: > I was temporarilly using pine to retrieve my email, and upon exiting the > program, pine notified me that the /var/mail directory was > vulnerable, and advised a chmod 1777 of such. The default is 775. > What are the implications of this, and won't 1777 make the folder more > vulnerable? My understanding was that if the SUID bit is turned > on for either U, G or O, that security is more at risk. Please > let me know what I should do... Read the man page for chmod. The suid and sgid bits mean something different on directories than on files. When set, they force all files created in that directory to be owned by the owner of the directory. Again ... see the man page for more detail, as well as (I believe) a description of how this helps security. -- Bill Moran Potential Technologies http://www.potentialtech.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3F099BD3.8030403>