You are not logged in.
- Topics: Active | Unanswered
#1 2015-01-28 18:10:51
- whahn1983
- Member
- Registered: 2013-05-23
- Posts: 59
[SOLVED] World Writable Files
I did a search for all world writable files and noticed a good amount in /proc, /dev, and /run, as well as /var/spool/postfix. Can I do a mass find and remove the world write or will this break the system. Are these supposed to be world writable?
Last edited by whahn1983 (2015-01-29 15:28:31)
Offline
#2 2015-01-28 19:09:09
- drcouzelis
- Member
- From: Connecticut, USA
- Registered: 2009-11-09
- Posts: 4,092
- Website
Re: [SOLVED] World Writable Files
What are the files?
Why do you want to delete them?
Offline
#3 2015-01-28 19:35:51
- karol
- Archivist
- Registered: 2009-05-06
- Posts: 25,440
Re: [SOLVED] World Writable Files
/proc is a virtual filesystem, don't touch it.
You should be careful with /dev and /run too https://wiki.archlinux.org/index.php/Ar … ntime_data
Offline
#4 2015-01-28 19:36:44
- whahn1983
- Member
- Registered: 2013-05-23
- Posts: 59
Re: [SOLVED] World Writable Files
Don't want to delete the files, just remove the world writable bit. How about /var/spool/postfix? Does that need world write? Seems like a potential security issues.
Offline
#5 2015-01-28 20:35:08
- Spider.007
- Member
- Registered: 2004-06-20
- Posts: 1,175
Re: [SOLVED] World Writable Files
I just installed postfix to check; but that directory is not world-writable for me; what does `pacman -Qkk postfix tell you about that specific directory?
`
Offline
#6 2015-01-28 20:42:25
- whahn1983
- Member
- Registered: 2013-05-23
- Posts: 59
Re: [SOLVED] World Writable Files
It looks like they are all actually in /var/spool/postfix/private and public and they all have the sticky bit as well. The pacman output gives warnings for UID mismatch.
Offline
#7 2015-01-28 20:45:11
- ewaller
- Administrator
- From: Pasadena, CA
- Registered: 2009-07-13
- Posts: 20,353
Re: [SOLVED] World Writable Files
What file system are you using on that volume?
Nothing is too wonderful to be true, if it be consistent with the laws of nature -- Michael Faraday
Sometimes it is the people no one can imagine anything of who do the things no one can imagine. -- Alan Turing
---
How to Ask Questions the Smart Way
Offline
#8 2015-01-28 20:53:47
- whahn1983
- Member
- Registered: 2013-05-23
- Posts: 59
Re: [SOLVED] World Writable Files
Ext4
Offline
#9 2015-01-29 10:04:05
- ghen
- Member
- From: Belgium
- Registered: 2010-08-31
- Posts: 124
Re: [SOLVED] World Writable Files
Don't want to delete the files, just remove the world writable bit. How about /var/spool/postfix? Does that need world write? Seems like a potential security issues.
Those are sockets (for postfix inter-process communication), not files. Stay off.
Use find -f to find actual files.
Offline
#10 2015-01-29 15:27:45
- whahn1983
- Member
- Registered: 2013-05-23
- Posts: 59
Re: [SOLVED] World Writable Files
Ah sounds good. Thank you.
Offline