Operating System - OpenVMS
cancel
Showing results for 
Search instead for 
Did you mean: 

Wrong file owner

 
SOLVED
Go to solution
Antoniov.
Honored Contributor

Wrong file owner

Hello Guys,
after long time I come back to VMS.
My question: how the user JULY creates files that are owned by USER?
Details:
- Open VMS V8.3 - I64
- JULY and USER are two valid usernames
- JULY and USER have two different UID
- JULY uses an application written by me
- Files are created by 'fopen' of standard C library
- All other users create their own files

Somebody has some idea?

TIA

Antonio
Antonio Maria Vigliotti
5 REPLIES 5
Steven Schweda
Honored Contributor

Re: Wrong file owner

> - Files are created [...]

Created where? Who owns that directory?

help directory /security
Jan van den Ende
Honored Contributor
Solution

Re: Wrong file owner

Antonio,

Welcome back!

In combination with Steven's question:
What privileges has JULY got?

Files ceated by users with SYSPRV (or GRPPRV if groupUIC matches) by default get parent DIR's ownership.

hth

Proost.

Have one on me.

jpe
Don't rust yours pelled jacker to fine doll missed aches.
Antoniov.
Honored Contributor

Re: Wrong file owner

Hello,
thanks for help.
I checked for required informations.
The owner of the parent dir is 'USER'.
JULY has all privileges so I suppose she creates file with directory owner.
Now I change security and I'll report you.

Antonio
Antonio Maria Vigliotti
Antoniov.
Honored Contributor

Re: Wrong file owner

Hi Jan,
your suggestion was right. Solution found.
Usually my user have minimal privileges.
I pleased thank you with 10 pts.

Antonio
Antonio Maria Vigliotti
John Gillings
Honored Contributor

Re: Wrong file owner

Antonio,

Have a look at the "Flowchart of File Creation", Figure 8-1 in HP OpenVMS Guide to System Security.

It explains how access, ownership and protection are determined when creating a file. Ownership privileges are the dangerous thing here, one reason it's never a good idea to leave high privileges enabled.

Curiously, there are cases where higher privilege CAUSES a NOPRIV error because a file is created with the "wrong" owner.
A crucible of informative mistakes