Arch Linux

Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!
Tasklist

FS#7473 - Users able to delete/write/move root:root files

Attached to Project: Arch Linux
Opened by Jeffrey Grembecki (xehp) - Wednesday, 20 June 2007, 06:54 GMT
Last edited by Jan de Groot (JGC) - Wednesday, 20 June 2007, 11:41 GMT
Task Type Bug Report
Category Security
Status Closed
Assigned To No-one
Architecture All
Severity Critical
Priority Normal
Reported Version 2007.05 Duke
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Description:

If I create a root:root 644 file in a users folder, that user is able to delete the file.

Additional info:
* package version(s)
* config and/or log files etc.

Steps to reproduce:

root$ touch /home/user/killme
user$ rm ~/killme
This task depends upon

Closed by  Jan de Groot (JGC)
Wednesday, 20 June 2007, 11:41 GMT
Reason for closing:  Not a bug
Comment by Jeffrey Grembecki (xehp) - Wednesday, 20 June 2007, 06:55 GMT
whoops!

groups: log video audio optical
kernel26: 2.6.21.5-1
Comment by Jeffrey Grembecki (xehp) - Wednesday, 20 June 2007, 07:23 GMT
Well, they can't technically write them without moving them out of the way first. This is also reported to happen on Ubuntu.
Comment by Roman Kyrylych (Romashka) - Wednesday, 20 June 2007, 10:05 GMT
Isn't this a normal behaviour?
User has 755 rights on his directory which means he can view and edit directory's contents which includes creating and removing files.
Comment by Jan de Groot (JGC) - Wednesday, 20 June 2007, 11:40 GMT
Make the directory sticky to avoid this behaviour. This is by design: the user doesn't need access to the file to delete it, as the user has write permissions to the directory the file is in.

Loading...