Bugtraq mailing list archives
Re: set group id on directories
From: Ollivier.Robert () hsc fr net (Ollivier Robert)
Date: Thu, 2 Mar 1995 14:14:12 +0100 (MET)
I'd like to know if a sgid bit on a directory represents a security risk, given the fact that the directory is not world or group writable.
I don't think so.
On my system, whereas the manual states that this bit is ignored on directories, a file created on such a directory is owned by the same group that posses the dir, and any child directory has the same sgid bit, by default. It this feature commonly used
BSD systems don't need this because this is the default behaviour. The setgid bit on directories was introduced on SVRn systems. On SunOS, you can get that behaviour back by specifying the option grpid in /etc/fstab. I may be a little partial but I think the BSD behaviour's better. -- Ollivier ROBERT -=-=- Herve Schauer Consultants -=-=- roberto () FreeBSD ORG -=-=-=-=-=- Support The Free UNIX Systems ! FreeBSD NetBSD Linux -=-=-=-=-=-
Current thread:
- Re: Re[2]: snooper watchers fast forward futurama (Mar 01)
- Re: Re[2]: snooper watchers System Administrator (Mar 02)
- Large security hole in SGI IRIX 5.2 Larry Glaze (Mar 02)
- Re: Large security hole in SGI IRIX 5.2 Christian A. Ratliff (Mar 03)
- Re: Large security hole in SGI IRIX 5.2 Larry Glaze (Mar 03)
- Re: Large security hole in SGI IRIX 5.2 Dave Schweisguth (Mar 03)
- Re: Large security hole in SGI IRIX 5.2 Dave Schweisguth (Mar 03)
- Re: Large security hole in SGI IRIX 5.2 Software Test Account (Mar 07)
- Re: Large security hole in SGI IRIX 5.2 Steve Robbins (Mar 10)
- Re: Large security hole in SGI IRIX 5.2 Christian A. Ratliff (Mar 03)
- <Possible follow-ups>
- Re: Re[2]: snooper watchers F. L. Charles Seeger III (Mar 01)
- Re: snooper watchers der Mouse (Mar 01)