Re: deny deleting a file for users
From: Godwin Stewart (gstewart_at_spamcop.net)
Date: 06/03/03
- Previous message: Hal Flynn: "New Focus Areas on SecurityFocus.com"
- In reply to: terry white: "Re: deny deleting a file for users"
- Next in thread: Brian Hatch: "Re: deny deleting a file for users"
- Reply: Brian Hatch: "Re: deny deleting a file for users"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 3 Jun 2003 19:36:01 +0200 To: focus-linux@securityfocus.com
And Thus Spake terry white <twhite@aniota.com> (on Sat, 31 May 2003 15:47:17
-0700 (PDT)):
> ... "removing parts of this file or append text" is in opposition to 'not
> being able to delete a file'. because, they all require 'write'
> permission.
Actually, one can exist without the other.
If user A has write permissions on the DIRECTORY containing file B, but not
on the file itself, then the user can DELETE the file but not modify it.
OTOH, if user A does NOT have write permission to the directory, then they
CANNOT delete (nor create) files in the directory. All you have to do is
make sure there is a null-length file already in the directory, and the user
will be able to read/write it (provided it has the right permissions) but
NOT delete it.
-- G. Stewart -- gstewart@bonivet.net -- gstewart@spamcop.net Registered Linux user #284683 --------------------------------------------------------------- Some days you are the bug; some days you are the windshield.
- Previous message: Hal Flynn: "New Focus Areas on SecurityFocus.com"
- In reply to: terry white: "Re: deny deleting a file for users"
- Next in thread: Brian Hatch: "Re: deny deleting a file for users"
- Reply: Brian Hatch: "Re: deny deleting a file for users"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
