Which commands (in /bin & /usr/bin) must have set user ID (for root)
Geoff Kuenning
geoff at desint.UUCP
Wed Oct 22 16:36:10 AEST 1986
In article <735 at hropus.UUCP> jrw at hropus.UUCP (Jim Webb) writes:
> df needs to be able to read the superblock of the filesystem(s) to see how
> many blocks and inodes are free. Unfortunately, the standard version allows
> it to open ANY device; it should restrict non-super-users to those devices
> found in /etc/mnttab (mounted filesystems)
However, this can be done by creating a special UID or GID for 'df' and putting
the appropriate devices in that user ID or group:
-rwsr-xr-x 1 check check 14356 Feb 2 1985 /bin/df
brw------- 1 check check 6, 11 Sep 24 09:53 /dev/w0a
brw------- 1 check check 6, 13 Feb 7 1985 /dev/w0b
--
Geoff Kuenning
{hplabs,ihnp4}!trwrb!desint!geoff
More information about the Comp.unix.wizards
mailing list