Re: Set user ID on execution

To: Brian Clark <brianj@ais.ais-gwd.com>
Cc: debian-user@lists.debian.org
Subject: Re: Set user ID on execution
From: Oswald Buddenhagen <ob6@inf.tu-dresden.de>
Date: Mon, 3 Apr 2000 10:30:02 +0200 (CEST)
Message-id: <[🔎] Pine.LNX.4.21.0004031025310.1158-100000@ugly.wh8.tu-dresden.de>
In-reply-to: <[🔎] 4.3.2.20000402182053.00c05860@ais.ais-gwd.com>

> > [set-uid theory]
> OK, I understand the what you've said above, but give me an example. I have 
> seen what happens when /bin/su is not setuid, but WHY does it have to be 
> like that, and WHY does it do what it does when it's not setuid? I've seen 
> a lot of other binaries in this predicament:
> [...]

why? well - i told, which power the set-uid root programs have. and that's
the reason to make them set-uid at all. only root may change the user-id
to an arbitrary value and thus change the identity (su, login). only root
may mount. only root has direct network access (ping), etc.
everything clear now? ;-)

-- 
Hi! I'm a .signature virus! Copy me into your ~/.signature, please!
--
Linux - the last service pack you'll ever need.

Reply to:

References:
- Re: Set user ID on execution
  - From: Brian Clark <brianj@ais.ais-gwd.com>

Prev by Date: which mailing list to follow potatoe
Next by Date: Re: ftp problems in masquerading with WIN box
Previous by thread: Re: Set user ID on execution
Next by thread: Re: Set user ID on execution
Index(es):
- Date
- Thread