DOC HOME SITE MAP MAN PAGES GNU INFO SEARCH PRINT BOOK
 
Maintaining system security

Sticky directories

Another feature that may affect daemons is sticky directories. If a directory's mode includes this permission bit only the owner of the file or root can remove the file from the directory. Daemons that manipulate temporary directories may behave improperly if files that they had assumed they could delete cannot be deleted.

You can handle this situation in one of two ways. First, remove the directory's sticky bit. This solves the daemon problem, but users must be cautioned about the security implications of using that directory for holding temporary files. The other solution is to modify the daemon and its corresponding helper program to agree on a new convention for file sharing. This second situation assumes that you have source code available and that you have the expertise and budget to modify the application.


Next topic: Disabling C2 features
Previous topic: Privileges

© 2003 Caldera International, Inc. All rights reserved.
SCO OpenServer Release 5.0.7 -- 11 February 2003