KarkomaOnline

As you probably know the chown command provides a way for the owner of a file to change the ownership of this file. In some circumstances (i.e. you want to know who created each file on your systems) you will want to avoid this behaviour.

To allow only the root user to chown, edit /etc/system and add the following:

set rstchown = 0

This will prevent users from using chown even if they were smart enough to have a copy of the /usr/bin/chown file in their own directory (i.e. to by pass changing permissions on /usr/bin/chown).

This entry was posted on Wednesday, September 10th, 2003 at 8:55 pm and is filed under Security, Solaris. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.