Re: Use of suidmanager

To: Michael Meskes <meskes@topsystem.de>
Cc: debian-devel@lists.debian.org
Subject: Re: Use of suidmanager
From: Andreas Jellinghaus <aj@dungeon.inka.de>
Date: Mon, 23 Jun 1997 23:26:05 +0200
Message-id: <[🔎] 19970623232605.00278@dungeon.inka.de>
In-reply-to: <[🔎] 199706231059.MAA07131@gauss.topsystem.de>; from Michael Meskes on Mon, Jun 23, 1997 at 12:59:31PM +0200
References: <[🔎] 199706231059.MAA07131@gauss.topsystem.de>

On Jun 23, Michael Meskes wrote
> Could anyone please tell me the advantages of suidmanager as it is right
> now? 

it's useless, because not all packages use it. 

> I can see the usefullness of a tool like that, but I wonder if there
> should be a daily test run to make sure no other file are suid. Or is
> this dones elsewhere?

if all packages were using it, we could check the checksecurity list
against the suid.conf, and every admin could be sure, that only programs
listed in suid.conf are suid.

> Also why are there file in /etc/suid.conf that are not suid at all:
> 
> debmake /usr/bin/build root root 755
> debmake /usr/bin/debpkg root root 755

because these a potential suid programs. some people have them suid (ok,
i prefer to use sudo to start these programs), so they are listed. i
don't know, if this makes sence or not. do i have to add such lines to
suid.conf for programs, that might be suid, but are not shipped as suid
in my default isdn configuration ?

> I'd like to know more about this (and other) security related packages.

the other package i know is checksecurity, a script ...

regards, andreas


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- Use of suidmanager
  - From: Michael Meskes <meskes@topsystem.de>

Prev by Date: Re: New field `Entered-Date' in Packages.gz
Next by Date: Re: Editor wars considered harmful
Previous by thread: Re: Use of suidmanager
Next by thread: RE: Use of suidmanager
Index(es):
- Date
- Thread