setuid (was Re: Non Destructive Version of rm)
j chapman flack
chap at art-sy.detroit.mi.us
Mon May 20 22:08:33 AEST 1991
In article <1991May14.101450.830 at convex.com> tchrist at convex.COM (Tom Christiansen) writes:
>Here's Henry Spencer's setuid(7) man page. I keep wanting to
...
And a very useful man page it is. I'll hang on to that.
The man page mentions that on "some" systems pwd(1) does not run setuid-root
and so can't pwd if the parent or an ancestor directory is unreadable.
My system is one of those. Is there something intrinsically unsafe about pwd
that would create holes if I made it setuid-root?
Also, I'm not sure I understand the effect of the resource-depletion types
of attacks. Someone recently suggested by email that a program can be made
to crash and leave the user in a privileged shell. When a program bombs,
doesn't its (privileged) process disappear?
...not arguing with the statements, just trying to understand the risks...
--
Chap Flack Their tanks will rust. Our songs will last.
chap at art-sy.detroit.mi.us -MIKHS 0EODWPAKHS
Nothing I say represents Appropriate Roles for Technology unless I say it does.
More information about the Comp.unix.admin
mailing list