Re: setuid binary in ktsuss
Yves-Alexis Perez <corsac@debian.org> writes:
> I'm about to upload ktsuss to debian, wich is a graphical wrapper around
> su (much like gksu but without any gnome dependency). One point puzzles
> me, the ktsuss binary is setuid root (so it can read the root password).
> gksu doesn't do this (it calls su, I guess).
I would expect it to use PAM, which uses the setuid unix_chkpwd binary.
If it's not using PAM, that's probably a bug.
--
Russ Allbery (rra@debian.org) <http://www.eyrie.org/~eagle/>
Reply to: