Re: suid-perl

To: Jules Bean <jmlb2@hermes.cam.ac.uk>
Cc: debian-devel@lists.debian.org
Subject: Re: suid-perl
From: Chip Salzenberg <chip@perlsupport.com>
Date: Sun, 31 Jan 1999 18:16:21 -0500
Message-id: <[🔎] 19990131181620.F16021@perlsupport.com>
In-reply-to: <[🔎] Pine.SOL.3.95q.990131223449.3831A-100000@red.csi.cam.ac.uk>; from Jules Bean on Sun, Jan 31, 1999 at 10:35:58PM +0000
References: <[🔎] 19990131170519.A16021@perlsupport.com> <[🔎] Pine.SOL.3.95q.990131223449.3831A-100000@red.csi.cam.ac.uk>

According to Jules Bean:
> On Sun, 31 Jan 1999, Chip Salzenberg wrote:
> > Every OS has a different set of mount options that may or may not be
> > relevant to setuid security.  I don't see what 'higher level' would be
> > useful.
> 
> The correct solution to this, surely, is for the mount nosuid to actually
> strip the suid bits of any files.  So that any calls to stat() on a floppy
> simply won't see suid bits.

I can see it both ways.

Consider that I may wish to mount a filesystem nosuid for the purpose
of making a tape backup.  Would I want the suid bits turned off in the
backup image?  I think not.
-- 
Chip Salzenberg      - a.k.a. -      <chip@perlsupport.com>
      "When do you work?"   "Whenever I'm not busy."

Reply to:

Follow-Ups:
- Re: suid-perl
  - From: Jules Bean <jmlb2@hermes.cam.ac.uk>

References:
- Re: suid-perl
  - From: Chip Salzenberg <chip@perlsupport.com>
- Re: suid-perl
  - From: Jules Bean <jmlb2@hermes.cam.ac.uk>

Prev by Date: Re: suid-perl
Next by Date: Re: Call for mascot! :-)
Previous by thread: Re: suid-perl
Next by thread: Re: suid-perl
Index(es):
- Date
- Thread