Chown and root

Bob McClure Jr robertmcclure at earthlink.net
Tue Jul 6 21:51:45 UTC 2004 

On Tue, Jul 06, 2004 at 02:31:33PM -0700, Waldher, Travis R wrote:
> > -----Original Message-----
> > From: Bob McClure Jr [mailto:robertmcclure at earthlink.net] 
> > Sent: Tuesday, July 06, 2004 1:43 PM
> > To: Getting started with Red Hat Linux
> > Subject: Re: Chown and root
> > 
> > 
> > On Tue, Jul 06, 2004 at 01:23:40PM -0700, Waldher, Travis R wrote:
> > > I am trying to locate the file you modify to all all users 
> > to use the 
> > > chown command. (without using SUDO or similar)
> > > 
> > > Right now you have to be root.
> > > 
> > > Thanks,
> > > Travis
> > 
> > I believe that is not possible.
> > 
> > Tell us what your situation and bottom line are.  Perhaps 
> > there is another way to do what you want.
> > 
> 
> In a nutshell, our users are used to having chown available to them on
> our HP/UX systems.

Tell 'em, "Tough!"  ;-)

> The Linux systems (Specifically Yellowdog in this case, which is based
> off RedHat) don't allow this.

Yes, I recall, in the not too distant past, being able to chown as a
mere mortal, and being dismayed that I couldn't in Linux.  However, I
have precious little need of it, so it's not bothered me.

> Now, we may or may not want to turn this on, a subject of more
> debate.

I'm sure someone with more experience (Rick Stevens, call your
office.) will have good information on why this is A Bad Idea(tm).  I
think I heard a good story at one time, but I don't recall it just
now.  Looking at the header file noted in your following para, I'd
guess that removing chown from mere mortals was a POSIXification, and
someone involved with POSIX had a good reason for it.

> But, lets say we do, how do we do this?
> 
> I've found an entry CAP_CHOWN in /usr/include/linux/capability.h that
> looks like I could use to enable this. I'de still want someone wiser and
> more knowledgeable than myself to confirm it though.

Looks workable to me.  That means you'd have to build a new kernel,
something I've not done since modular kernels came out.  Do be sure to
keep your old (working) kernel in case something turns sour.

> Thanks,
> Travis

Cheers,
-- 
Bob McClure, Jr.             Bobcat Open Systems, Inc.
robertmcclure at earthlink.net  http://www.bobcatos.com
A church alive is worth the drive.

More information about the Redhat-install-list mailing list