Bug 1176

Summary: Cannot set sticky bits via sftp
Product: Portable OpenSSH Reporter: Paul Gotch <p.r.gotch>
Component: sftp-serverAssignee: Assigned to nobody <unassigned-bugs>
Status: CLOSED DUPLICATE    
Severity: normal    
Priority: P2    
Version: 4.3p2   
Hardware: Other   
OS: Linux   

Description Paul Gotch 2006-03-24 03:12:21 AEDT
Comment 1 Paul Gotch 2006-03-24 03:16:00 AEDT 
It is not possible to set sticky bits via sftp due to the following code in the process_setstat() function in sftp-server.c

if (a->flags & SSH2_FILEXFER_ATTR_PERMISSIONS) {
    ret = chmod(name, a->perm & 0777);
    if (ret == -1)
         status = errno_to_portable(errno);
}

If the user has shell access then they can execute a chmod command via ssh to get round this therefore even if there is a security reason for doing this it should at least be configurable. If there is a valid security reason for doing this it should be noted in the FAQ.

I found this while attempting to use sshfs, which uses sftp underneath.
Comment 2 Frederik Deweerdt 2007-04-26 19:01:03 AEST 

*** This bug has been marked as a duplicate of bug 1310 ***
Comment 3 Damien Miller 2008-04-04 09:55:22 AEDT 
Close resolved bugs after release.