9 Jan
2014
9 Jan
'14
8:23 p.m.
non-su chown worked in pwb, if the caller owned the file. code had to be
added then to the system call to strip the setuid/setgid bits if you were
not su, for obvious security reasons. you didnt see that bit stripping
in, say the v6/v7 code.
From: Tim Bradshaw <tfb(a)tfeb.org>
Sorry if this is off-topic but I bet someone here will know.
I recently had a significant surprise when I discovered that on HP-UX ordinary users can
still give away files. Various of us who remember fairly old Unixes then sat around trying
to remember which systems had this and where it came from: getting it almost entirely
wrong, it turns out.
What we remembered was that it came from BSD, but this seems to be entirely wrong. It
looks like it originated with System III / V, and perhaps was imported from there into
some SunOS (possibly it was in all versions before Solaris?) which is why we remember it
as being in BSD. It must have been in some 80s system or we would not remember it. POSIX
still allows it but clearly reluctantly.
So the questions are: (a) did it originate in System III or does it go back further than
that, and (b) was it in the BSD-derived SunOSes or are we just making that up?
And I guess: who thought this was a good idea?
Thanks
--tim
9 Jan
9 Jan
8:51 p.m.
New subject: History of chown semantics
On Thu, Jan 9, 2014 at 2:23 PM, Brian S Walden <tuhs(a)cuzuco.com> wrote:
non-su chown worked in pwb, if the caller owned the
file. code had to be
added then to the system call to strip the setuid/setgid bits if you were
not su, for obvious security reasons. you didnt see that bit stripping
in, say the v6/v7 code.
Brian - right as I showed in the code snippet from V6 and PWB. The idea
came into being with PWB.
The question that is still open is why was it added/need in the first
place? I always thought is was a crazy/miss feature,
I think the argument is that if you owned the file, you should be allowed
to give it to anyone else [including root] - but that actions opens up a
number of issues (you pointed the big security one that was handled by
and-ing off the SUID/SGID bits). There are accounting issues as well as
the practical one that Tim and I pointed out with importing of files on a
tape.
As I said, the file give-away feature comes into UNIX with PWB, so I would
ask Mash is he remembers why it was needed and why the SVID folks wanted
it. As I said, I personally found it not useful/a bad idea/miss-feature.
I remember that I soon after I learned about it/got bitten by the side
effect, I ran into dmr and srb at a USENIX and asked them about that a few
other System III features that I found a little strange. I don't remember
much of the conversation. But, if there are been a "good" reason I think
I would have remembered it and not always thought it to be a bad idea.
Clem
3965
days inactive
3965
days old
1 comments
2 participants
participants (2)
-
Brian S Walden -
Clem Cole