[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#58640: wrapper does not handle fakeroot well

On Wed, Feb 23, 2000 at 12:32:34PM +0000, Roland Rosenfeld wrote:
> > as you can see if we get uid man then we just just chmod the man
> > binary writable just fine and write to it.
> But the suid bit will disappear after changing the file (or is this a
> special of some shells?):

That's not relevant. The special circumstances here are that a non-root user 
can write to a program that root runs. If the man account is compromised, 
they can replace man with a rootkit installer, it doesn't need or want to be 
setuid man anymore, provided root runs it.

> Maybe I'm not paranoid enough today?



Reply to: