Re: Bug#58640: wrapper does not handle fakeroot well
On Wed, Feb 23, 2000 at 12:32:34PM +0000, Roland Rosenfeld wrote:
> > as you can see if we get uid man then we just just chmod the man
> > binary writable just fine and write to it.
>
> But the suid bit will disappear after changing the file (or is this a
> special of some shells?):
That's not relevant. The special circumstances here are that a non-root user
can write to a program that root runs. If the man account is compromised,
they can replace man with a rootkit installer, it doesn't need or want to be
setuid man anymore, provided root runs it.
> Maybe I'm not paranoid enough today?
;)
Colin
Reply to: