[H-GEN] pppd
Martin Pool
mbp at pharos.com.au
Fri Jan 16 03:21:07 EST 1998
On Fri, 16 Jan 1998, Anthony Towns wrote:
> > The scripts are in /etc/ppp/scripts, they are all readable by everyone, and
> > trying chmod u+s to the scripts doen't seem to work.
>
> I've read that suid scripts are a security hole, and thus
> Linux/bash/something doesn't do anything with suid shell scripts.
In some old systems, one could press Ctrl+C to interrupt /bin/sh while it
was running a SUID script and be left with an interactive suid shell. (!)
There have been other problems to do with race conditions while starting
up. I think they work OK in recent versions of Linux and bash, but
randomly typing 'chmod u+s' is generally a bad idea: only programs which
expect to be SUID should be set so.
--
Martin Pool, Pharos
In the spirit of past advisories, our first suggestion is to downgrade to
a UNIX so old that it doesn't yet contain the at(1) feature. -- r00t
----------------------- HUMBUG General List --------------------------------
echo "unsubscribe general" | mail majordomo at humbug.org.au # To Unsubscribe
More information about the General
mailing list