The setgid bit on a directory is to support BSD activities. It used to be
used for mail delivery.
> It would be a good solution to make files created by Apaches mod_php in
> safe-mode, not owned by web:web (or httpd:httpd or somethign) anymore, but
> the Owner of the directory.
No. You loose the fact that the file was NOT created by the user.
> I do not even see a security hole if nobody other than the user itself and
> httpd/web can reach this area in the file system, anyway. And it is still
> the users decision that files in this (his) directory should belong to
> him.
1. users will steal/bypass quota controls
2. Consider what happens if a user creates a file in such a directory and
it is executable. - since the file is fully owned by a different user, it
appears to have been created by that user. What protection mask is on
the file? Can the creator (not owner) make it setuid? (nasty worm
propagation method)
> It seems, this has to be patched for each file system separately, right?
> For example in linux/fs/ext2/ialloc.c.
>
> Actually, the suid bit on directories works at least under FreeBSD. Is
> there any reason, why it does not work under Linux?
I don't believe it is in the POSIX definition.
-------------------------------------------------------------------------
Jesse I Pollard, II
Email: pollard@navo.hpc.mil
Any opinions expressed are solely my own.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/