Re: User can delete root's file from user's home directory

From: Mike (securitybasics_at_infinity77.net)
Date: 10/28/04

  • Next message: Jonathan Loh: "Re: Linux shutdown"
    To: "security basics" <security-basics@securityfocus.com>, <jimbo@mailbox.hu>
    Date: Thu, 28 Oct 2004 13:57:11 -0400
    
    

    You can make the file immutable with "chattr +i"

    ----- Original Message -----
    From: "Imre" <jimbo@mailbox.hu>
    To: <security-basics@securityfocus.com>
    Sent: Thursday, October 28, 2004 7:29 AM
    Subject: User can delete root's file from user's home directory

    > Hello
    >
    > I have a big problem.
    > On my system I have 2 users, root and a test-user named test.
    > I made this:
    > (as root, in /home/test)
    > # touch testfile
    > # echo probe > testfile
    >
    > After this I type 'ls -l' and get:
    >
    > test:/home/test# ls -l
    > total 4
    > -rw-r--r-- 1 root root 6 Oct 28 13:27 testfile
    >
    > OK, it's default, right?
    >
    > But my problem starts here:
    >
    > test@test:~$ ls -l
    > total 4
    > -rw-r--r-- 1 root root 6 Oct 28 13:27 testfile
    > test@test:~$ rm testfile
    > rm: remove write-protected file `testfile'? y
    > teszt@teszt:~$ ls -l
    > total 0
    > teszt@teszt:~$
    >
    > I don't want to delete files and directories from my ~ which made by
    > root. Could anyone help me?
    >
    > (Sorry about my english, usually only read this language)
    >
    > Thanks
    >
    > Jimbo
    >
    >
    >


  • Next message: Jonathan Loh: "Re: Linux shutdown"

    Relevant Pages

    • Re: Disk Druid - Fedora flame #1
      ... What I do as root, ... Root's home directory should contain very little: ... part of a minimal boot environment. ... And the root filesystem should be as small as reasonably possible, ...
      (Fedora)
    • Re: X11Forwarding, ssh -X, and /bin/su
      ... ]>but I'm not really tunneled using ssh then, ... ]connecting to the X server and have the home directory NFS-mounted ... ](unless you leave root unmapped over NFS, ... ]root-readable place and set the environment $XAUTHORITY variable ...
      (comp.security.ssh)
    • Re: Shared User Folders and printer setup
      ... only mapping to the root? ... I have a 2003 standard server setup running as a Terminal Server to allow our other location to access our main SBS 2003 server and run our Mfg/accntg software. ... In order to get this software to work Trans-Micro (the makers of Check Factory) have a detailed procedure that allows multiple Terminal Server users to run the software at the same time. ... Does anyone have any idea why and how can I get it to look at the Home directory path Z: ...
      (microsoft.public.windows.terminal_services)
    • Re: Excellent news.. Malware for OS X!
      ... compromise and that nothing is immune. ... If it isn't already running as root, it will ask for the password ... the majority of Mac users, then malware has an even larger reach. ... Another method of avoiding that is to simply copy everything in /Applications to somewhere in your home directory and changing links appropriately. ...
      (comp.sys.mac.advocacy)
    • Re: move your home directory - second newsgroup post
      ... I'm fairly sure you'll have to enable root access ... user's home directory. ... I've never found ANY action that requires enabling ... Steve W. Jackson ...
      (comp.sys.mac.misc)