[CentOS] vsftpd: users can delete files they don't possess

Tue May 16 17:15:24 UTC 2006
William L. Maltby <BillsCentOS at triad.rr.com>

On Tue, 2006-05-16 at 18:57 +0200, Kai Schaetzl wrote:
> Andy Green wrote on Tue, 16 May 2006 16:59:18 +0100:
> 
> > This sounds like a Unix feature, not a bug.  If the user has write 
> > rights to the directory, he can delete anything in the directory no 
> > matter who owns the file.
> 
> Oh, well, now that you say it I remember that remotely from "Unix school". 
> I'd completely phased that out.
> 
> Is there a way to achieve different behavior without using acl extensions? 
> My objective is that I want users *not* to be able to delete certain 
> files/directories in their home directories. It seems I can achieve this 
> partly by putting files in a directory they don't own. They then cannot 
> delete the files in the directory and therefore cannot delete the 
> directory. As soon as the directory is empty they can delete it.
> 

Have you reviewed the chmod command? There is a bit that can be set that
says that files can only be deleted by those who own them. Shows up with
a "t" in certain positions. Just like with /tmp.

> Kai
> <snip sig stuff>

HTH
-- 
Bill
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://lists.centos.org/pipermail/centos/attachments/20060516/fb35daf3/attachment-0005.sig>