SETUID STRIPTS ARE A SECURITY HOLE
Maarten Litmaath
maart at cs.vu.nl
Wed Nov 28 05:31:45 AEST 1990
In article <1990Nov27.100200.26406 at hollie.rdg.dec.com>,
jch at dyfed.rdg.dec.com (John Haxby) writes:
)...
)This works, and prevents any symbolic link diversion:
)
)-----------------
)#!/bin/sh /usr/local/bin/zot
)
): do something suid
)echo $0 $*
)-----------------
The problem: currently only the first 32 characters of a `#!' line are
effective, so this won't work:
#!/bin/sh /usr/local/bin/supercalifragilisticexpialidocious (*)
One of the reasons I wrote `indir'.
(*) Courtesy of Henry Spencer. :-)
--
"Please DON'T BREAK THE CHAIN! Terry Wood broke the chain and ended up
writing COBOL PROGRAMS. Three days later, he found his Blue Star Tatoo
Letter, made 20 copies and mailed them out. He found a good job writing
compilers." -- tjw at unix.cis.pitt.edu (Terry J. Wood)
More information about the Comp.unix.shell
mailing list