Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

why suid mount (was Re: Possible bufferoverflow condition in lpr,

From: reece () taz nceye net (Bryan Reece)
Date: Tue, 13 Aug 1996 14:21:08 -0400

   Date:        Tue, 13 Aug 1996 09:25:03 -0400
   From: Mike Acar <mike () contract kent edu>

   Speaking of suid binaries, *why* are /bin/mount and /bin/umount suid?
   These shouldn't be run by anybody but the superuser.

They're suid root to allow users to mount/umount removable media.
There's a `user' option in fstab that allows normal users to
mount/umount the specified filesystem; this is normally used along
with nosuid,nodev in an attempt to reduce security risks.

   --
   DZ-015 (Mike Acar)         Information Retrieval        Ministry of Information
Previous By Date Next
Previous By Thread Next

Current thread: