Re: Permissions 101

To: Bob Bernstein <poobah@ruptured-duck.com>
Cc: debian-user@lists.debian.org
Subject: Re: Permissions 101
From: William T Wilson <fluffy@snurgle.org>
Date: Mon, 15 Jan 2001 14:34:05 -0500 (EST)
Message-id: <[🔎] Pine.LNX.4.21.0101151431450.9597-100000@benatar.snurgle.org>
In-reply-to: <[🔎] 20010115142048.A581@ruptured-duck.com>

On Mon, 15 Jan 2001, Bob Bernstein wrote:

> $ ./sutest
> does this work?
> /var/log/user.log: Permission denied
> 
> Can someone explain what's going on here? Is starting a shell the problem?

The setuid bit doesn't work on shell scripts.  You will have to compile a
C program use use perl.  Perl scripts work with the setuid bit because
perl has a special setuid executable to run them with.

Essentially having shell scripts work with the setuid bit allows a
malicious user to "trick" the system into running a false interpreter with
root permissions.  This won't do, so root shell scripts are prohibited.

Reply to:

References:
- Permissions 101
  - From: Bob Bernstein <poobah@ruptured-duck.com>

Prev by Date: Re: video card suggestions
Next by Date: Re: Help! Wrecking my system trying to get sound
Previous by thread: Re: Permissions 101
Next by thread: Re: Permissions 101
Index(es):
- Date
- Thread