UNIX file setuid sucurity hole?

ark at alice.UUCP ark at alice.UUCP
Sun Mar 15 01:54:39 AEST 1987


In article <2168 at ncoast.UUCP>, robertd at ncoast.UUCP writes:
> Then simply
> chmod the file to set to the owners ID
> apon execution? Then chown it to the
> owner. Then execute the command. Your
> uid will be set to the owner , who owns
> the file you wish to see.
> 

Sorry, that doesn't work.

Systems that allow non-privileged users
to execute "chown" also turn off the
set-uid bits when chown is executed.



More information about the Comp.unix.questions mailing list