Bugtraq mailing list archives
Re: [Debian 2.0] /usr/bin/suidexec gives root access
From: bofh () COKER COM AU (Russell Coker - mailing lists account)
Date: Wed, 29 Apr 1998 06:45:19 +1100
Executive summary: /usr/bin/suidexec gives every user a root shell. Remove it.
Also change the suidexec line in /etc/suid.conf to the following so it never
gets the SUID bit again: suidmanager /usr/bin/suidexec root root 755
^^^^
The default is 4755.
---
Vote 1; Claudia Christian.
http://www.worldcharts.nl/xindex.html
Current thread:
- Re: Leveraging search engines against FrontPage enabled websites MrJeKKyL (Apr 26)
- Re: Leveraging search engines against FrontPage enabled websites David LeBlanc (Apr 28)
- Re: Leveraging search engines against FrontPage enabled websites Michael Nelson (Apr 28)
- [Debian 2.0] /usr/bin/suidexec gives root access Thomas Roessler (Apr 28)
- Re: [Debian 2.0] /usr/bin/suidexec gives root access Russell Coker - mailing lists account (Apr 28)
- Re: [Debian 2.0] /usr/bin/suidexec gives root access Joey Hess (Apr 28)
- Re: [Debian 2.0] /usr/bin/suidexec gives root access Russell Coker - mailing lists account (Apr 28)
- Re: Leveraging search engines against FrontPage enabled websites David LeBlanc (Apr 28)