|
@@ -40,11 +40,9 @@ desired for all directories. The first change is a mode 0750 for the
|
|
|
$LFS/root directory. This is to make sure that not just everybody can
|
|
$LFS/root directory. This is to make sure that not just everybody can
|
|
|
enter the /root directory (the same a user would do with /home/username
|
|
enter the /root directory (the same a user would do with /home/username
|
|
|
directories). The second change is a mode 1777 for the tmp
|
|
directories). The second change is a mode 1777 for the tmp
|
|
|
-directories. This way, any user can write data to the /tmp directory when
|
|
|
|
|
-needed. The sticky bit (the first bit in the 1777 mask) makes sure
|
|
|
|
|
-users can't delete other users files which they normally can do,
|
|
|
|
|
-because the directory is set in such a way that everybody (owner, group,
|
|
|
|
|
-world) can write to that directory (the 777 in the bit mask)
|
|
|
|
|
|
|
+directories. This way, any user can write data to the /tmp directory but
|
|
|
|
|
+cannot remove another user's files (the latter is caused by
|
|
|
|
|
+the socalled "sticky bit" - bit 1 of the 1777 bit mask).
|
|
|
</para>
|
|
</para>
|
|
|
|
|
|
|
|
<blockquote><literallayout>
|
|
<blockquote><literallayout>
|
Gerard Beekmans