jac@unlisys.in-berlin.de (Joerg Conradt) (05/11/91)
hi - > Maybe you can apply the sticky directories patch and make /usr/spool/mail > sticky, so anyone can write and create files, but only the owner of a file > (and root) can remove it. what do you say - there is already a patch for it??? pls send it to me... i've searching for it several weeks now without success. > Would this work? Is this The Right Thing to do? will work! > Any other directories that would be a candidate for becoming sticky, apart > from this one and /tmp? maybe /usr/tmp ? another idea: if you create a new user (saying login: mail) give him * as password and change /usr/bin/mail to be owned by mail and set the s-bit. now you only allow mail to write in /usr/spool/mail. does this work? I've not tryed it yet, because of hard-disk-crash... (oh no, not again!) by the way, there is another patch for the -rwxr-x--x prblm, you might know. anyone beeing 'world' is not allowed to start a file with permissioins set like these are. do you have this patch too? Greeting Joerg -- Joerg Conradt Berlin, Germany || UUCP: jac@unlisys.in-berlin.de