Re: A question on setting setuid bit

To: debian-devel@lists.debian.org
Subject: Re: A question on setting setuid bit
From: Steve Kemp <skx@debian.org>
Date: Wed, 5 Jul 2006 09:36:37 +0100
Message-id: <[🔎] 20060705083637.GB25700@steve.org.uk>
In-reply-to: <[🔎] Pine.LNX.4.33.0607042022120.3313-100000@rimavpc1.dnrc.bell-labs.com>
References: <[🔎] Pine.LNX.4.33.0607042022120.3313-100000@rimavpc1.dnrc.bell-labs.com>

On Tue, Jul 04, 2006 at 08:37:52PM -0400, LEE, Yui-wah (Clement) wrote:

> I am building a package in which one of the binary has
> to have the setuid and setgid bits set.  I wonder which
> one of the following two is the more appropriate method
> to use?

  It looks like you've got the answer to this already, but
 it is worth considering whether the bit needs to be set
 by default.

  Perhaps a debconf question like man-db, or cdrecord, could
 allow the user to disable/enable this.

  I'd want to be extremely sure that the package had no
 buggy code before installing it setuid/setgid.   If you'd
 like somebody to check over the code for you, or as a
 second pair of eyes, then please consider asking the auditing
 people:

    http://shellcode.org/mailman/listinfo/debian-audit

Steve
--

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: A question on setting setuid bit
  - From: Matthew Palmer <mpalmer@debian.org>

References:
- A question on setting setuid bit
  - From: "LEE, Yui-wah (Clement)" <leecy@bell-labs.com>

Prev by Date: Re: A question on setting setuid bit
Next by Date: Re: BTS tag proposal "faq"
Previous by thread: Re: A question on setting setuid bit
Next by thread: Re: A question on setting setuid bit
Index(es):
- Date
- Thread