https://bugzilla.novell.com/show_bug.cgi?id=437937 Summary: Normal users can delete files owned by root Product: openSUSE 11.1 Version: Beta 3 Platform: Other OS/Version: Other Status: NEW Severity: Blocker Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: bitdealer@gmail.com QAContact: qa@suse.de Found By: --- Normal users (read as not root) can delete files owned by root without having write access. One gets asked if one wants to remove the write-protected file but that's all. E.g: stephan@suse-11-1:~> l test -rw-r--r-- 1 root root 5 2008-10-22 23:08 test stephan@suse-11-1:~> rm test rm: remove write-protected regular file `test'? y stephan@suse-11-1:~> l test ls: cannot access test: No such file or directory -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.