[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: svgalib and SUID

On Tue, Dec 11, 2001 at 09:35:37AM -0500, Steaphan Greene wrote:
> -If this program must be SUID root, how do I "register" it so it is
>  known to be kosher with the system (I have seen conflicting docs on
>  this one, so I am not sure).

Hmm.  Normally, you just include it in the package with the suid bit
set, and the admin can use dpkg-statoverride to change it.  If the
program is useful even without suid, then I suggest shipping it without.

However, has anyone reviewed this program for security?  A new suid root
program should be looked at by several pairs of eyes.  And even then it's
not a good idea :-)

Richard Braakman
Will write free software for money.
See http://www.xs4all.nl/~dark/resume.html

Reply to: