Re: suid

To: debian-security@lists.debian.org
Subject: Re: suid
From: Kuba Jakubik <bighard@klub.eu.org>
Date: Sat, 17 Apr 2004 18:13:16 +0200
Message-id: <[🔎] 4081579C.80508@klub.eu.org>
In-reply-to: <[🔎] 20040417154818.GA13696@zionlth.org>
References: <[🔎] E1BEdm7-0007w8-00@calista.eckenfels.6bone.ka-ip.net> <[🔎] 200404171328.03150.mario.ohnewald@gmx.de> <[🔎] 20040417154818.GA13696@zionlth.org>

IMHO, this would be bad.  The Cron Daemon would have to sanitize the
input of the crontab each time it checks the file for running
(presumably every minute, unless their is a way of notifying the cron
daemon of a new crontab.)

The default crontab in debian creates a file in /tmp, the user modifies
it using their favorite editor, saves it, crontab then performs a sanity
check on it.  If all is good it copies the file into the crontab
directory and notifies the daemon of the new crontab.

I think the current system works well...


let's combine it :)

user puts his crontab in his home...

launches something non-suid that notifies the cron deamon that there's anew entry, cron sanitizes it and copies to its directory...this would allow crontab to run non-suid since it would just have to benotified of changes, and it could run as a deamon...


greetings,

Kuba BIGHard Jakubik

Reply to:

References:
- Re: suid
  - From: Bernd Eckenfels <ecki@lina.inka.de>
- Re: suid
  - From: Mario Ohnewald <mario.ohnewald@gmx.de>
- Re: suid
  - From: Phillip Hofmeister <plhofmei@zionlth.org>

Prev by Date: Re: suid
Next by Date: Re: apache - not upgrading correctly ...
Previous by thread: Re: suid
Next by thread: Re: suid
Index(es):
- Date
- Thread