Hi Quotes from IRC for documentation purposes
[19:47:41] -*- elbrus is looking into bug #965219 [19:47:44] [zwiebelbot] Debian#965219: dbconfig-common: Write file error (wrong owner) - https://bugs.debian.org/965219 [19:48:18] <elbrus> does anybody know why root can't "exec > $file" anymore in sid/bullseye? [19:48:52] <elbrus> (if file is owned by a different user and having strict permissions) [19:49:03] <elbrus> it works in buster [19:51:10] <ansgar> elbrus: /proc/sys/fs/protected_regular. For directories like /tmp [19:52:06] <elbrus> 2 on my system [19:52:34] <elbrus> 0 on the buster system I'm testing on [19:53:04] <elbrus> ansgar: can you point me at (or in the direction of) some documentation about it? [19:53:32] <ansgar> elbrus: linux-doc, Documentation/admin-guide/sysctl/fs.rst.gz [19:53:41] <elbrus> awesome, thanks [19:53:48] <elbrus> and I assume the default changed? [19:54:05] <ansgar> elbrus: It's clearly an unsafe operation as user www-data could replace the file with a symlink to something else. [19:54:14] <ansgar> And then root would overwrite an unrelated file. [19:54:26] <ansgar> elbrus: Yes. It's a new feature. [19:54:43] <elbrus> that explains, I'll need to find a work around Paul PS: man proc.5 also has the info
signature.asc
Description: OpenPGP digital signature
