Re: suid script

To: debian-user@lists.debian.org
Subject: Re: suid script
From: Torsten Hilbrich <Torsten.Hilbrich@gmx.net>
Date: 10 Dec 1998 13:40:37 +0100
Message-id: <[🔎] 87af0wyxtm.fsf@myrkr.in-berlin.de>
References: <[🔎] m0znIrU-0008HrC@helgespc>

Helge Hafting <helge.hafting@daldata.no> writes:

> > problem: you can change the content of the file between the two !!
> > so you can have your script, running as root, executing whatever
> > you want !!
> 
> So that's the problem with SUID scripts.  Seems to me it could be
> solved by *not* closing the script file, just keep it open.  Why
> can't that be done?

It has been done in some Unixes.  I've read about it in the Llama
book, 2nd edition, pg. 361.  They use /dev/fd/3 to pass the already
open script to the command interpreter.  According to this book "Most
modern releases of SysVr4 and BSD 4.4 use this approach ...".

> It can't be possible, or someone would surely have fixed it a long
> time ago?

I wonder if this is possible in Linux too?

	Torsten

-- 
Homepage: http://www.in-berlin.de/User/myrkr

Reply to:

References:
- Re: suid script
  - From: Helge Hafting <helge.hafting@daldata.no>

Prev by Date: Re: ssh with password
Next by Date: Re: recommendation on presentation software
Previous by thread: Re: suid script
Next by thread: Re: suid script
Index(es):
- Date
- Thread