After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 104052 - Nautilus not following SGID bit
Nautilus not following SGID bit
Status: RESOLVED FIXED
Product: gnome-vfs
Classification: Deprecated
Component: File operations
2.9.x
Other Linux
: High critical
: ---
Assigned To: gnome-vfs maintainers
Nautilus Maintainers
: 133272 155492 164999 (view as bug list)
Depends on:
Blocks:
 
 
Reported: 2003-01-21 11:55 UTC by Damien Covey
Modified: 2006-04-05 04:33 UTC
See Also:
GNOME target: ---
GNOME version: 2.9/2.10

Attachments
Proposed patch (1.72 KB, patch)
2004-12-09 15:30 UTC, egeetha 		none Details | Review

Description Damien Covey 2003-01-21 11:55:54 UTC 
Description of Problem:
I have a directory /shared that I have done a
"chown -R nobody.shared /shared && chmod -R 2774
/shared" so that all files are created with the
owner set to shared and permisions on 774. 
Nautilus does not acknolegde this when copying files.

Steps to reproduce the problem:
1. Create a directory as described above
2. Copy a file from else where into this directory
using nautilus
3. Note the gid of the file is incorrect, stays as
previous, should changed to "shared"

Actual Results:
File retains it's permisions / owners


Expected Results:
File owner set to $user.shared and permissions 774.


How often does this happen? 
Every time.


Additional Information:
Now test from the command line, copying the same
file, something like "cp
/home/damien/music/goodmusic.ogg /shared/".  This
should make the file in /shared owned by
damien.shared permissions 774.  Nautilus keeps the
permissions / owners from original location/file.
Comment 1 Damien Covey 2003-01-21 11:57:16 UTC 
Specified version number.
Comment 2 Dennis Gilmore 2003-01-21 12:05:15 UTC 
I can confirm this action also.  i have a simliar setup and i can make
a file in directory  has correct permissions.  i can copy file over
with konqueror and it has the correct permissions  but if i copy a
file with nautalis  shows the group as my primary group.  not the
group that owns the directory that has the SGUID bit set.  I am using
Red Hat 8.0 will all errata applied.
Comment 3 Jason D. Hildebrand 2004-02-12 19:01:28 UTC 
*** Bug 133272 has been marked as a duplicate of this bug. ***
Comment 4 Jon Lapham 2004-08-29 16:05:36 UTC 
Confirmed in nautilus 2.6.0, could someone please update the Version of this bug
to (at least) 2.6.0?

This bug is a security problem for people working in shared environments, where
file permissions are maintained through the use of sticky bits.  I use
directories where maintaining file permissions and group settings is fundamental
to security.

Could someone please update the severity of this bug to "Critical" since this is
a security issue.

Has there been any progress on this?
Comment 5 Damien Covey 2004-08-29 23:01:59 UTC 
I have increased the version number as per comments.
I have also upgraded the serverity to Critical and await the wrath of someone
saying it was not my place to do so.
Comment 6 egeetha 2004-12-09 15:30:48 UTC 
Created attachment 34665 [details] [review]
Proposed patch

Proposed patch to check target dir SGID and set group accordingly
Comment 7 Sebastien Bacher 2005-01-23 20:21:07 UTC 
*** Bug 164999 has been marked as a duplicate of this bug. ***
Comment 8 Sebastien Bacher 2005-01-23 20:22:06 UTC 
that's a gnome-vfs issue, reassigning to the right place, updating the version
Comment 9 Luis Villa 2005-01-23 21:29:50 UTC 
Actually reassigning to the vfs maintainers :)
Comment 10 Alexander Larsson 2005-01-25 11:48:50 UTC 
fix in cvs
Comment 11 Sebastien Bacher 2005-02-03 21:33:49 UTC 
*** Bug 155492 has been marked as a duplicate of this bug. ***
Comment 12 Mathew Wright 2006-04-05 04:33:50 UTC 
This problem is reoccuring now with gnome-vfs2-2.14.0-2

We need to get this fixed ASAP, as it is breaking the unix security model