Re: Why are CA certifcates writable for every user?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



On 02/06/2015 01:27 AM, Tomasz Kramkowski wrote:
> On 05/02/15 19:20, Patrick Burroughs (Celti) wrote:
>> their actual permissions are those of the target.
> 
> From what I understand (and tests I've done, and discussions on arch
> channels on IRC) their actual permissions are inherited from the
> directory they are in AND from the permissions of a target.
> 
> Actions that act on the target always inherit target permissions (read,
> write and execute). Actions that act on the link, however, always
> inherit the directory permissions (delete and move).
> 
	Delete and move always depend on the (parent) directory permission,
whether you operate on a symlink, a file or a subdirectory.

> This can be tested by symlinking a file from another user's home
> directory (which will obviously have to be done as root.

	Actually, this does not need root. You can even create a symlink to a
non-existing file if you want. Actually *accessing* the symlink is
another matter of course.

		Jerome
-- 
mailto:jeberger@xxxxxxx
http://jeberger.free.fr
Jabber: jeberger@xxxxxxxxx

Attachment: signature.asc
Description: OpenPGP digital signature


[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [Share Photos]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]
  Powered by Linux