Re: suid script

To: Debian User Lists <debian-user@lists.debian.org>
Subject: Re: suid script
From: Helge Hafting <helge.hafting@daldata.no>
Date: Tue, 08 Dec 1998 09:51:15 +0100
Message-id: <[🔎] m0znIrU-0008HrC@helgespc>
In-reply-to: Message from pat@patoche.org of "Thu, 03 Dec 1998 22:29:10 +0100." <[🔎] 199812032129.WAA00696@vagabond.bde.espci.fr>

[...]
> the executable (bash, whatever) opens the file 
> it closes it
> it changes uid/gid to reflect suid status -> so it becames root or whatever
> it reopens it
> and executes it
> 
> problem: you can change the content of the file between the two !!
> so you can have your script, running as root, executing whatever you want !!

So that's the problem with SUID scripts.  Seems to me
it could be solved by *not* closing the script file, just keep it
open.  Why can't that be done?
It can't be possible, or someone would surely have fixed it
a long time ago?

Helge Hafting

Reply to:

Follow-Ups:
- Re: suid script
  - From: Jiri Baum <jiri@baum.com.au>
- Re: suid script
  - From: Torsten Hilbrich <Torsten.Hilbrich@gmx.net>

References:
- Re: suid script
  - From: pat@patoche.org

Prev by Date: Re: Hacked System
Next by Date: Emacs20
Previous by thread: Re: suid script
Next by thread: Re: suid script
Index(es):
- Date
- Thread