Re: setuid/setgid binaries contained in the Debian repository.
On Fri, Aug 01, 2003 at 10:08:17AM +0200, Micha? Politowski wrote:
> On Thu, 31 Jul 2003 17:30:11 +0300, Richard Braakman wrote:
> > On Thu, Jul 31, 2003 at 01:17:01PM +0100, Steve Kemp wrote:
> > > http://www.steve.org.uk/cgi-bin/debian/index.cgi
> >
> > If you're just scanning for binaries with s bits set, then you'll
> > probably miss all the ones that use whatever that tool was
> > (suidmanager?) that was used by some packages before we had
> > dpkg-statoverride.
>
> As well as the ones using dpkg-statoverride in their postinsts now.
>From my investigations, I thought that the intended use of dpkg-statoverride
was by the local administrator, modifying the default suid/sgid and
ownership of the file as set in the package tarball.
- Matt
Reply to: