From: David Engel (david@ods.com)
Date: 09/27/92

Next message: : "Linux-Activists Digest #232"
Previous message: Thomas Dunbar: "Re: ed in linux"
Next in thread: Matthew Gream: "Re: top suid - security hole?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

From: david@ods.com (David Engel)
Subject: Re: top suid - security hole?
Date: 28 Sep 1992 00:54:00 GMT

Rafal Kustra (summer student) (rafal@utstat.uucp) wrote:
: My ps, top and stuff are suid. This is so they can read
: /dev/kmem. Now top allows you to kill. With suid set
: anyone can kill init ! Not a best sol'n. So where did I
: go wrong ?

Change /dev/kmem to mode 660 and then make top, ps, free, etc. setgid
instead of setuid.

David

-- 
David Engel                        Optical Data Systems, Inc.
david@ods.com                      1101 E. Arapaho Road
(214) 234-6400                     Richardson, TX  75081

Next message: : "Linux-Activists Digest #232"
Previous message: Thomas Dunbar: "Re: ed in linux"
Next in thread: Matthew Gream: "Re: top suid - security hole?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]