Re: supersuer by a normal user with chmod

To: debian-user@lists.debian.org
Subject: Re: supersuer by a normal user with chmod
From: Vineet Kumar <debian-user@virtual.doorstop.net>
Date: Wed, 25 Sep 2002 00:36:48 -0700
Message-id: <[🔎] 20020925073648.GA43251@doorstop.net>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 30117.1032938909@www16.gmx.net>
References: <[🔎] 30117.1032938909@www16.gmx.net>

* Raffaele Sandrini (maturarbeit@gmx.ch) [020925 00:30]:
> I tested the following: As a normal user i crated a file in my homedir.
> % touch test
> 
> I changed it to a exec file.
> % chmod 700 test
> 
> No i set the superuser bit
> % chmod +s test
> 
> It worked(!!!!!). That means that a user can download for example a BASH
> binary and set the superuser bit for it ans has root privileges ??!!
> 
> Am i missing here something?

Yes. =)

+s is the setuid bit, not the 'superuser bit' (there is no such thing).

man chmod, take a deep breath, and test that your u+s binary does not in
fact run with root privileges.

good times,
Vineet
-- 
http://www.doorstop.net/
-- 
#include<stdio.h>
int main() {
    puts("Reader! Think not that \n"
         "technical information \n"
         "ought not be called speech;");
    return 0;
}

Attachment: pgp06x7vHr7I9.pgp
Description: PGP signature

Reply to:

References:
- supersuer by a normal user with chmod
  - From: Raffaele Sandrini <maturarbeit@gmx.ch>

Prev by Date: supersuer by a normal user with chmod
Next by Date: Re: supersuer by a normal user with chmod
Previous by thread: supersuer by a normal user with chmod
Next by thread: Re: supersuer by a normal user with chmod
Index(es):
- Date
- Thread