Secure deletion and trash bin support

Posted Dec 8, 2006 0:54 UTC (Fri) by nix (subscriber, #2304)
In reply to: Secure deletion and trash bin support by Robin.Hill
Parent article: Secure deletion and trash bin support

This is, of course, not to be confused with the immutable attribute, which
(among other effects) makes a file un-deletable.

(gah.)

The trash directory thing has all sorts of horrible potential problems,
though, particularly when group- or world-writable directories are
concerned. (World-writable isn't common outside of /tmp, but
group-writable is common.)

I can see half a dozen ways to DoS the system with this alone, especially
if users can set attributes on the trash directory such that users can ask
to move files in there but then don't have privileges to delete them from
there...