Re: How Debian Linux could be made more secure
Martin Schulze wrote:
> I thought lintian already detects setuid binaries and needs
> confirmation by the author that it needs to be setuser or
> not.
Not really. It warns for suid and sgid binaries in the package; but often,
packages don't include such binaries directly. They call suidregister
in the postinst, and use chown and chmod if suidregister is not available.
Lintian would have to parse that in order to get a full list, and it
doesn't do that (yet).
Richard Braakman
--
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: