Re: SUID program removal
From: Rob 'Feztaa' Park (feztaa@shaw.ca)Date: 10/20/01
- Previous message: Postmaster: "Chrooting Openssh"
- In reply to: Jason Giglio: "Re: SUID program removal"
- Next in thread: Seth Arnold: "Re: SUID program removal"
- Next in thread: Johannes B. Ullrich: "Re: SUID program removal"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 20 Oct 2001 01:40:37 -0600 From: Rob 'Feztaa' Park <feztaa@shaw.ca> To: focus-linux@securityfocus.com Subject: Re: SUID program removal Message-ID: <20011020014037.A1188@so_much_for_message_ids.com>
On Fri, Oct 19, 2001 at 04:29:33PM -0400, Jason Giglio (dis)graced my inbox with:
> > And of course, one should never, never, NEVER make ANY system
> > executable world writable! I prefer to keep them at root.root 0555 or
> > at times even 0511 unless there is specific reason to do otherwise.
>
> What's the point of 511 rather than 500?
My guess would be that with 511, any user could execute the program.
With 500, you'd have to be root to use it :)
-- Rob 'Feztaa' Park feztaa@shaw.ca -- Only God can make random selections.
- Previous message: Postmaster: "Chrooting Openssh"
- In reply to: Jason Giglio: "Re: SUID program removal"
- Next in thread: Seth Arnold: "Re: SUID program removal"
- Next in thread: Johannes B. Ullrich: "Re: SUID program removal"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
