thr3ads.net - openssh bugs - [Bug 1436] New: scp -p does not preserve sticky bit (01000) [Feb 2008]

If this information is useful, please help other people find it:
Share via:

bugzilla-daemon at bugzilla.mindrot.org

2008-Feb-04 11:02 UTC

[Bug 1436] New: scp -p does not preserve sticky bit (01000)

https://bugzilla.mindrot.org/show_bug.cgi?id=1436

           Summary: scp -p does not preserve sticky bit (01000)
    Classification: Unclassified
           Product: Portable OpenSSH
           Version: 4.7p1
          Platform: All
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: scp
        AssignedTo: bitbucket at mindrot.org
        ReportedBy: openssh-bugzilla at janacek.sk


Overview:
When using scp -rp to copy a directory with sticky bit on (such as
/tmp), the sticky bit is not preserved.

Reproduction:
Create a directory dir with permissions 1777. Then use
scp -rp dir user at otherhost:
The resulting directory on the otherhost will have permissions of 0777
instead of 1777. From the security point of view this may considered a
serious problem.

Location of the problem:
in scp.c the FILEMODEMASK does not include the sticky bit (S_ISVTX).

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.

bugzilla-daemon at bugzilla.mindrot.org

2010-Nov-24 00:37 UTC

head link

[Bug 1436] scp -p does not preserve sticky bit (01000)

https://bugzilla.mindrot.org/show_bug.cgi?id=1436

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |djm at mindrot.org
             Status|NEW                         |RESOLVED
         Resolution|                            |WONTFIX

--- Comment #1 from Damien Miller <djm at mindrot.org> 2010-11-24 11:37:25
EST ---
I don't think we will change this behaviour, as it is inherited from
27-year old rcp(1) and doing so could break all sorts of assumptions
and scripts.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.

bugzilla-daemon at bugzilla.mindrot.org

2011-Jan-24 01:33 UTC

head link

[Bug 1436] scp -p does not preserve sticky bit (01000)

https://bugzilla.mindrot.org/show_bug.cgi?id=1436

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |CLOSED

--- Comment #2 from Damien Miller <djm at mindrot.org> 2011-01-24 12:33:49
EST ---
Move resolved bugs to CLOSED after 5.7 release

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.

Seemingly Similar Threads

Search for more reasonably related threads

openssh bugs - Feb 2008 - [Bug 1436] New: scp -p does not preserve sticky bit (01000)

[Bug 1436] New: scp -p does not preserve sticky bit (01000)

[Bug 1436] scp -p does not preserve sticky bit (01000)

[Bug 1436] scp -p does not preserve sticky bit (01000)

Seemingly Similar Threads