Drew Parsons <[EMAIL PROTECTED]> writes:
> Currently (unless my system deviates from everyone else) tune2fs is
> world-executable:
> $ ls -l /sbin/tune2fs
> -rwxr-xr-x 3 root root 21432 2007-07-14 23:06 /sbin/tune2fs
There is nothing wrong with this. Anybody can download the e2fsprogs
package and run tune2fs from his home directory, so you gain nothing
from changing the permissions.
> I wanted to query whether this is in fact the way we want it. It
> doesn't bother me personally since I only have my own personal debian
> machines.
>
> But I could imagine it being somewhat disconcerting if I were managing a
> set of common machines, only to find some random user had, for
> instance, changed the times for the next automatic filesystem checks by
> invoking tune2fs -c.
How could a random user do this? I just tried:
$ /sbin/tune2fs -c 10 /dev/hda3
tune2fs 1.40.2 (12-Jul-2007)
/sbin/tune2fs: Permission denied while trying to open /dev/hda3
Couldn't find valid filesystem superblock.
> I guess the same might apply to the other e2fsprogs utilities in /sbin,
> which are all world-executable.
>
> Is the current state really how it should be?
I would say yes.
Regards,
Sven
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
