Re: little help with firetools

To: fxkl47BF@protonmail.com
Cc: debian-user@lists.debian.org
Subject: Re: little help with firetools
From: Jeffrey Walton <noloader@gmail.com>
Date: Tue, 1 Jul 2025 14:36:27 -0400
Message-id: <[🔎] CAH8yC8=X2VuSQjr55_J=6EZ9ZLxJXCuxt+wZu_ZCEe7fs1Ys7w@mail.gmail.com>
Reply-to: noloader@gmail.com
In-reply-to: <[🔎] 3486rr76-2ooq-2p31-5s73-6o583q1929o0@cebgbaznvy.pbz>
References: <[🔎] 3486rr76-2ooq-2p31-5s73-6o583q1929o0@cebgbaznvy.pbz>

On Tue, Jul 1, 2025 at 2:29 PM <fxkl47BF@protonmail.com> wrote:
>
> on debian 11 i just install firetools and firejail
> docs say both are setuid
> firejail works, firetools doesn't
> firejail is setuid, firetools isn't
> if i sudo chmod u+s /usr/bin/firetools i get
>
> FATAL: The application binary appears to be running setuid, this is a security hole.
> Aborted
>
> is this a problem wth the firetools package

I suspect (but don't know) that firetools is a shell script, while
firejail is a compiled application.

Generally speaking, it is Ok to setuid on a compiled application (lots
of handwaiving). However, setuid on a script is considered a security
flaw.

Jeff

Reply to:

Follow-Ups:
- Re: little help with firetools
  - From: Nicolas George <george@nsup.org>

References:
- little help with firetools
  - From: fxkl47BF@protonmail.com

Prev by Date: Monthly FAQ for Debian-user mailing list (last modified 20250701)
Next by Date: Re: little help with firetools
Previous by thread: little help with firetools
Next by thread: Re: little help with firetools
Index(es):
- Date
- Thread