Program run as root, configfiles writable by 'user'
If I have a program running as root, can I have the config files as follow :
Code:
-rw------- 1 user user 50310 Mar 5 15:16 configfile.conf And only the user 'user' will be able to change the config-files, right ? |
Yes, root can do anything.
Be careful though. You don't want users passing malicious commands by putting them in the config file and getting root to execute them. |
Tell me if I'm safe :
This 'user' has no shell (/sbin/nologin) and is chrooted with vsftp to the directory that holds the config files. With a safe FTP-password, am I correct that only I with this 'user' can edit the config files with my FTP-program ?? |
Yes, as long as no one else uses your ftp program.
As long as no other users can traverse the directory tree into that users directories, then they can't even see it. But root sees all ;-) |
All times are GMT -5. The time now is 11:52 PM. |