KFileSave bug

Thiago Macieira thiago at kde.org
Fri Mar 9 06:43:29 GMT 2007


Branan Riley wrote:
>Actualy, preserving the owner makes sense security-wise. Otherwise if
>you had permissions set to 0666 (or even 0660), someone could just
>save the file then switch the permissions, and you've lost your file.
>That seems a bigger violation of the Unix security model than
>preserving the original owner when editing a file.

Only root can chown(2).

Preserving the owner is not possible.

-- 
  Thiago Macieira  -  thiago (AT) macieira.info - thiago (AT) kde.org
    PGP/GPG: 0x6EF45358; fingerprint:
    E067 918B B660 DBD1 105C  966C 33F5 F005 6EF4 5358
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20070309/449c6ed0/attachment.sig>


More information about the kde-core-devel mailing list