Re: Why are CA certifcates writable for every user?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



On 06/02/15 18:50, "Jérôme M. Berger" wrote:
> 	Actually, this does not need root. You can even create a symlink to a
> non-existing file if you want. Actually *accessing* the symlink is
> another matter of course.

Yeah, now I think about it, saying that you can delete / move the
symlink based on directory permissions and then saying that you need
root for creation doesn't quite check out. You're right.

Creation, deletion and moving (deletion then creation?) of a symlink is
entirely dependant on the directory it is stored in. But actions like
reading, writing and executing which act on the actual linked file
depend on the permissions of the actual file linked to.

(And it's needless to say that the file permissions of the symlink
itself (777) can be completely ignored.)

-- 
Tomasz Kramkowski
E-Mail:  tk@xxxxxxxxxx
PGP:     6FCE87503AAF42AB3BF4 94FE40B037BA0A5B8680

Attachment: signature.asc
Description: OpenPGP digital signature


[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [Share Photos]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]
  Powered by Linux