Re: su message

To: debian-boot@lists.debian.org
Subject: Re: su message
From: Ethan Benson <erbenson@alaska.net>
Date: Tue, 12 Jun 2001 14:20:06 -0800
Message-id: <[🔎] 20010612142006.J5569@plato.local.lan>
Mail-followup-to: debian-boot@lists.debian.org
In-reply-to: <[🔎] E159p4U-0008M6-00@riva.ucam.org>; from cjw44@flatline.org.uk on Tue, Jun 12, 2001 at 03:23:06PM +0100
References: <[🔎] 20010611124640.A13279@opensource.lineo.com> <[🔎] E159kMZ-0006V2-00@riva.ucam.org> <[🔎] 20010612014140.M2905@plato.local.lan> <[🔎] E159p4U-0008M6-00@riva.ucam.org>

On Tue, Jun 12, 2001 at 03:23:06PM +0100, Colin Watson wrote:
> >its already setuid, setuid doesn't work for dropping privileges, only
> >gaining them.
> 
> Not as in 'chmod u+s', as in the system call. If setuid(2) doesn't work
> for dropping privileges, we're all in trouble.

oh right, though setuid() is not very easy to call in a shell script
;-)  i suppose you might be able to do it if you changed the postinst
to perl. 

> Besides, mandb is not setuid by default.

yes noticed that.  

> That might well be neater. Thanks.

ive already used it on a few local scripts i have and it really seems
to work well.  i wish findutils would use it so you don't get su root
-> nobody logs every day...

-- 
Ethan Benson
http://www.alaska.net/~erbenson/

Attachment: pgpyvKhahRwbi.pgp
Description: PGP signature

Reply to:

References:
- su message
  - From: Matt Kraai <kraai@debian.org>
- Re: su message
  - From: cjw44@flatline.org.uk (Colin Watson)
- Re: su message
  - From: Ethan Benson <erbenson@alaska.net>
- Re: su message
  - From: cjw44@flatline.org.uk (Colin Watson)

Prev by Date: cvs commit to boot-floppies/scripts/rootdisk/prototype/etc by kraai
Next by Date: Misc problems with b-f 2.3.6 install, hppa
Previous by thread: Re: su message
Next by thread: problem with latest boot-floppies
Index(es):
- Date
- Thread