@nixCraft <Pedeantic /> dead-drops are essential trade-craft. 007 is fine permission for a dead-drop directory. an at(1) job or filesystem-watcher trigger uses a setuid program to move dropped contents to a setuid directory quickly.
@nixCraft Imagine you have a toilet in your house but only guests can use it. That's 007. A crapper only for guests. It doesn't matter how urgent you are.
@nixCraft <Pedeantic /> dead-drops are essential trade-craft. 007 is fine permission for a dead-drop directory. an at(1) job or filesystem-watcher trigger uses a setuid program to move dropped contents to a setuid directory quickly.