Re: /tset/LSB.fhs/root/bin/bin-tc 45 failure - /bin/ping
Matt,
Are you aware that practically every security alert for Linux recommends
that the suid bit be turned off in ping because of security exploits?
The LSB test simply says its wrong to have suid turned off; but that is
clearly an option of any sensible system administrator.
For a non-networked, home user, it wont matter; but the LSB has to take
into account the many different security requirements of a Linux
installation.
Dont you think its a bit ridiculous to specify in the LSB that you
*must* have the suid bit turned on?
Ken Burrell
linux.support@mscsoftware.com
Matt Wilson wrote:
>
> On Tue, May 14, 2002 at 11:21:20AM -0700, candee.hoecker@mscsoftware.com wrote:
> > For security purposes, we removed the suid bit on our /bin/ping program and
> > the /tset/LSB.fhs/root/bin/bin-tc 45 test now fails.
> > Is there a reason the suid bit is expected to be set for /bin/ping?
>
> Erm, it's useless for non-root users without setuid root? (you have
> to have the capability of getting a raw socket, which requires
> elevated privileges)
>
> Cheers,
>
> Matt
--
Ken Burrell High Performance Computing
Project Manager, R&D MSC.Software Corporation
voice: (714)445-5612 2 MacArthur Place
fax: (714)784-4116 Santa Ana, CA 92707
--
To UNSUBSCRIBE, email to lsb-test-request@lists.linuxbase.org
with subject of "unsubscribe". Trouble? Email listmaster@lists.linuxbase.org
Reply to: