Re: allowing a "normal" user to work efficiently

To: debian-user debian-user <debian-user@lists.debian.org>
Subject: Re: allowing a "normal" user to work efficiently
From: Mark Roach <mrroach@okmaybe.com>
Date: Tue, 21 Oct 2003 15:40:48 -0400
Message-id: <[🔎] 1066765248.3393.13.camel@flmrroach>
In-reply-to: <[🔎] 20031021160302.GC17255@server.crasseux.com>
References: <[🔎] 3481.213.193.180.46.1066731756.squirrel@camelot.ddts.net> <[🔎] 3F953931.2090006@yahoo.es> <[🔎] 1794.213.193.180.46.1066746797.squirrel@camelot.ddts.net> <[🔎] 3F95521C.303@yahoo.es> <[🔎] 20031021160302.GC17255@server.crasseux.com>

On Tue, 2003-10-21 at 12:03, Bijan Soleymani wrote:
[...]
> For example imagine you make "cat" suid...
> 
> Then someone can do:
> cat /bin/rm /bin/cat
> cat -rf /

This would just output both /bin/rm and /bin/cat to your screen...
if you were to "cat /bin/rm > /bin/cat" you would get
mrroach@flmrroach:~$ cat /bin/rm > /bin/cat bash: /bin/cat: Permission
denied 

because piping is done by the shell, not cat. I'm not arguing that this
is not unsafe, just that your particular example is incorrect ;-)

-Mark

Reply to:

Follow-Ups:
- Re: allowing a "normal" user to work efficiently
  - From: Bijan Soleymani <bijan@psq.com>

References:
- allowing a "normal" user to work efficiently
  - From: "Benedict Verheyen" <linux4bene@pandora.be>
- Re: allowing a "normal" user to work efficiently
  - From: Roberto Sanchez <rcsanchez97@yahoo.es>
- Re: allowing a "normal" user to work efficiently
  - From: "Benedict Verheyen" <linux4bene@pandora.be>
- Re: allowing a "normal" user to work efficiently
  - From: Roberto Sanchez <rcsanchez97@yahoo.es>
- Re: allowing a "normal" user to work efficiently
  - From: Bijan Soleymani <bijan@psq.com>

Prev by Date: UPgrade to testing breaks atitvout?
Next by Date: Re: Lots of brokeness in Sid this morning
Previous by thread: Re: allowing a "normal" user to work efficiently
Next by thread: Re: allowing a "normal" user to work efficiently
Index(es):
- Date
- Thread