[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: possibly security bug in mv ?
|
From: |
Nelson Benítez |
|
Subject: |
Re: possibly security bug in mv ? |
|
Date: |
Mon, 22 Aug 2005 20:26:38 +0000 |
El lun, 22-08-2005 a las 16:10 +0200, Andreas Schwab escribió:
> Nelson Benítez <address@hidden> writes:
>
> > Hi, on man page of mv it is said:
> >
> > "When both source and destination are on the same filesystem, they are
> > the same file (just the name is changed; owner, mode, timestamps remain
> > unchanged). When they are on different filesystems, the source file is
> > copied and then deleted. mv will copy modification time, access time,
> > user and group ID, and mode if possible. When copying user and/or group
> > ID fails, the setuid and setgid bits are cleared in the copy."
> >
> > The last sentence (clearing setuid,setgid bits) doesn't seem to be true
> > in the following testcase:
>
> You should report that to the author of the manual page. There is no such
> statement in the documentation of coreutils, neither version 5.2.1 nor
> 5.3.0.
>
> Andreas.
>
About the version at the footer of man page I can read:
"This page describes mv as found in the fileutils-4.0 package; other
versions may differ slightly."
You talk about 5.2.1 and 5.3.0 but don't know if you refer to fileutils
package or mv program, can you clarify this so I go to file a bug.