setuid shell scripts
G. Ewing
greg at cantuar.UUCP
Thu Nov 3 14:14:03 AEST 1988
Under how many of the following conditions does the problem
still exist:
(A) The shell checks the owner and set{u,g}id bits of the
script it is about to execute to make sure it's okay.
(B) The "shell" isn't a shell or interpreter at all, and
doesn't execute the script as a list of commands.
(C) The "shell" consists of the following program:
main() {
}
If any of these things prevent the problem, then I submit that
removing the setuid-#! facility is wrong.
Greg Ewing Internet: greg at cantuar.uucp
Spearnet: greg at nz.ac.cantuar Telecom: +64 3 667 001 x8357
UUCP: ...!{watmath,munnari,mcvax,vuwcomp}!cantuar!greg
Post: Computer Science Dept, Univ. of Canterbury, Christchurch, New Zealand
Disclaimer: The presence of this disclaimer in no way implies any disclaimer.
More information about the Comp.unix.wizards
mailing list