HPE Community
Operating System - HP-UX
1833309 Members
2845 Online
110051 Solutions
New Discussion

Stopping file deletion wth "find"

 
Malcolm McKenzie
Advisor

‎05-06-2003 08:03 AM

‎05-06-2003 08:03 AM

Stopping file deletion wth "find"

If you touch a file called -i then anyone trying to delete a file in that directory will be asked for confirmation. Is there a similar way of stopping someone running a find command to delete files?
0 Kudos
Reply
3 REPLIES 3
Pete Randall
Outstanding Contributor

‎05-06-2003 08:13 AM

‎05-06-2003 08:13 AM

Re: Stopping file deletion wth "find"

A find command by itself doesn't delete files, it uses rm to do so. I would think the -i technique should still work. Have you tried it?


Pete

Pete
0 Kudos
Reply
James R. Ferguson
Acclaimed Contributor

‎05-06-2003 08:17 AM

‎05-06-2003 08:17 AM

Re: Stopping file deletion wth "find"

Hi:

One thing you can (should) certainly do is to set the sticky-bit on the *directory* level. This allows only the owner of a file to delete it:

# chmod 1777 mydir

See the man pages for 'chmod' for more information.

Regards!

...JRF...
0 Kudos
Reply
Chris Vail
Honored Contributor

‎05-06-2003 08:22 AM

‎05-06-2003 08:22 AM

Re: Stopping file deletion wth "find"

Actually, the -i thing DOESN'T stop anyone from removing a file. If the user types in rm FILENAME, the file is removed regardless of whether or not a -i is in the directory. This is an old Unix hackers trick to slow down someone using rm *. Because -i will almost always be the first directory listed after . (dot) and .. (dot dot), the rm command interprets this as an argument, rather than the file that it really is.

The answer to your question is you really can't protect users from themselves. Hopefully, you don't let them have any privledged accounts (like root) where they can do any real damage. If a user is smart enough to use the find command, they'll also find a way to delete a file using it.


Chris
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.