Unix Filesystem Permissions
The cluster discusses security risks and implications of write access to filesystems in Unix-like systems, including chmod commands, ownership, ACLs, nosuid mounts, and comparisons to traditional permission models.
Activity Over Time
Top Contributors
Keywords
Sample Comments
If someone else has write access to the your filesystem, you're already screwed.
for the noob like me, how does this compare to setting a permissions or ownership bit on a folder?
Does it allow you to have access to the whole fileystem, unrestricted access?
No. You have one of the workarounds the author suggests, which is only allowing users to write to nosuid mounts.
Only if they made their "backups" writable as well
I mean the fact that the binaries on disk can be modified without getting user permission.
Could still use plain old filesystem permissions no ?
Bear in mind that no it cannot write arbitrary files. It's a unix system, it has unix permissions, and required privilege escalation to write to locations the user is not allowed to.
I think it's that all files have mode 0777, i.e. executable by default. I think it can be changed with mount options though.
Yes it would. That is implied because writing arbitrary files means you can also edit the permission systems