[OpenAFS-devel] posix chown again
Derrick Brashear
shadow@gmail.com
Fri, 24 Oct 2008 13:14:20 -0400
On Mon, Oct 20, 2008 at 11:20 AM, <wollman@khavrinen.csail.mit.edu> wrote:
> <<On Mon, 20 Oct 2008 09:51:15 -0400, Michael Meffie <mmeffie@sinenomine.net> said:
>
>> I have been looking at Derrick's patch from last spring
>> to implement POSIX style chown, with the hope it can be
>> included in OpenAFS 1.5. Since there are security implications
>> to this change, I am posting it here for further review
>> and comment.
>
>> The idea is to allow regular users to disown files when the
>> C acl bit is set.
>
> What does POSIX have to do with this? POSIX does not require that
> users have the ability to give away files. (In fact, a "strictly
> conforming" POSIX implementation shall not allow this.)
>
> Does the patch include changes to allow pathconf(_PC_CHOWN_RESTRICTED,
> "/afs/...") to return the correct value?
For added fun, consider this:
http://sources.redhat.com/bugzilla/show_bug.cgi?id=5778
--
Derrick