Bugtraq mailing list archives
Re: SGID man
From: hno () HEM PASSAGEN SE (Henrik Nordstrom)
Date: Fri, 6 Aug 1999 03:08:54 +0200
Isaac To wrote:
But yes, it is ugly. It might be better if any SGID program is also SUID nobody, and re-acquire real user privilege only when required. But still, it is ugly.
That is not a viable approach unless the binary (and all other binaries owned by nobody) also is immutable. If the binary isn't immutable and someone finds a security breach in the program or one of the invoked sub-programs then they can easily replace the binary with a custom one, and if root (or another user) then runs this program in the beleif that it is the original one... -- Henrik Nordstrom
Current thread:
- SGID man Solar Designer (Jul 31)
- Re: SGID man Henrik Nordstrom (Aug 01)
- Re: SGID man Henrik Nordstrom (Aug 05)
- <Possible follow-ups>
- Re: SGID man Isaac To (Aug 03)