Complex security mechanism is unsecure (was Re: non-superuser chown(2)s considered harmful)
Kristoffer Eriksson
ske at pkmab.se
Thu Dec 13 05:01:26 AEST 1990
In article <6874 at titcce.cc.titech.ac.jp> mohta at necom830.cc.titech.ac.jp (Masataka Ohta) writes:
>In general, making some application set-uid to root is more secure
>than making it set-uid to, say, uucp.
>
>In the latter case, you must be careful that no unauthorized person can
>have uucp nor root priviledge.
But that is fairly easy to prevent for a non-user account. Just make it
impossible to login to that account.
(If, in stead, you break into that account by using some bug in some
set-uid program owned by that account, then it wouldn't exactly be more
secure to have that program owned by root, so that is no way to avoid my
argument.)
--
Kristoffer Eriksson, Peridot Konsult AB, Hagagatan 6, S-703 40 Oerebro, Sweden
Phone: +46 19-13 03 60 ! e-mail: ske at pkmab.se
Fax: +46 19-11 51 03 ! or ...!{uunet,mcsun}!sunic.sunet.se!kullmar!pkmab!ske
More information about the Comp.unix.internals
mailing list