Why does a shell script fail in crontab?

Randy Orrison randy at umn-cs.CS.UMN.EDU
Thu Oct 20 01:27:20 AEST 1988


In article <287 at lakart.UUCP> dg at lakart.UUCP (David Goodenough) writes:
|0 7 * * *	root	/usr/local/dopath
		^^^^
|Note: this is a setuid
|root shell script - yes I am aware of the possible security leak, 

My question is: WHY is this a setuid shell script?  As set in your
crontab, it's executed by root, so there's no reason I can see to have
it setuid also.  In a situation like yours (only two users, both
trusted) I can see that it wouldn't be too much of a worry, but to do
it for no reason is just plain silly.

	-randy
--
Randy Orrison, Chemical Computer Thinking Battery  --  randy at cctb.mn.org
(aka randy@{ux.acss.umn.edu, umn-cs.uucp, umnacca.bitnet, halcdc.uucp})

		"So many bits, so few cycles."



More information about the Comp.unix.wizards mailing list