Re: Suid/sgid

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Date: Wednesday, August 26, 1992 - 12:24 pm

From: rafal@utstat.uucp (Rafal Kustra (summer student))
   Date: Tue, 25 Aug 1992 23:09:07 GMT

   Either I don't understand the concept of suid/sgid
   (**very** possible) or there is something wrong.

   Say root creates a script like follows:
           cat $*
   and sets it suid.

   <description of how the setuid shell script apparently didn't have
    root privs omitted>

This should probably be added to the FAQ.

Setuid shell scripts are a bad, bad, bad, bad, bad thing.  They
represent a gigantic security hole for your system.  There is either a
race condition you can exploit to break root, or (depending on how dumb
your shell is), you can sometimes just confuse it enough by using a
symlink to giving you a root shell.  

So on most modern Un*x systems (Linux included), setuid shell scripts
are specifically disabled by the kernel.  If you must have a shell
script which needs to run as root, write a small C program that execs
the shell script, and make sure that no one can spoof the C program into
running some other program besides your shell script.

                                                        - Ted

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Re: Suid/sgid, Theodore Ts'o, (Wed Aug 26, 12:24 pm)


linux-kernel:
jmerkey	[ANNOUNCE] mdb: Merkey's Linux Kernel Debugger 2.6.27-rc4 released
David Miller	[GIT]: Networking
Bart Van Assche	Integration of SCST in the mainstream Linux kernel
Andrew Morton	Re: [PATCH] [MTD] mtdchar.c: Fix regression in MEMGETREGIONINFO ioctl()
git:
Kevin Ballard	Re: git on MacOSX and files with decomposed utf-8 file names
Patrick Doyle	Re: Split a subversion repo into several git repos
Pieter de Bie	Re: What's cooking in git.git (topics)
Toby White	Using Filemerge.app as a git-diff viewer
linux-activists:
Jim Winstead Jr.	Re: Root Disk/Book Disk Compatibility
Les Andrzejewski	X386/WD90C31/SUMSUNG SYNC MASTER 4
Drew Eckhardt	Re: IBM PS/2 Model 70
Epstein	Linux bootimage 0.96a patchlevel 1 and 486
linux-netdev:
Laurent Pinchart	[PATCH] dm9000: Support MAC address setting through platform data.
Stephen Hemminger	Re: [PATCH 6/7] [NETDEV]: tehuti Fix possible causing oops of net_rx_action
Benjamin Herrenschmidt	[PATCH 3/11] ibm_newemac: Fix ZMII refcounting bug
Jeff Garzik	Re: on the topic of alternate MAC addresses


trouble with my Asus Mainboard	59 minutes ago	Linux kernel
help in UDP catching module..	16 hours ago	Linux kernel
Is there anything like Real-time drivers?	2 days ago	Linux general
ns16550 serail console in Linux 2.6.19	2 days ago	Linux general
what class should i use to register my devices	2 days ago	Linux kernel
reset bios pasword toshiba	3 days ago	Hardware
Analysis of Process Scheduling	3 days ago	Linux kernel
RT Kernel and SSH Server Panics	4 days ago	Linux kernel
Resetting the bios password for Toshiba Laptop	4 days ago	Hardware
Kernel drops ethernet packets every ten minutes... Ideas?	4 days ago	Linux kernel

Re: Suid/sgid

Online users