From: urlichs@smurf.sub.org (Matthias Urlichs) Subject: Re: /bin/df does not have to be setuid root (at least for me) Date: 10 Apr 1993 21:23:54 +0200
In comp.os.linux, article <1993Apr8.013551.10416@kf8nh.wariat.org>,
bsa@kf8nh.wariat.org (Brandon S. Allbery) writes:
>
> On mounted filesystems, df can use the statfs() system call. If df supports
> checking free space on non-mounted filesystems and is used that way, it needs
> sufficient permissions to read the disk device... but I'm not sure that option
> should be granted to non-root anyway.
>
I'd go a step further and say that I'm sure that option should _not_ be
granted to non-root.
> >PS: I also don't see why /bin/login is often world-executable and setuid
> >root. I have my /bin/login not setuid root and only executable by root and
>
> Berzerkers have the nasty habit of typing "login foo" to log out and
> immediately log in as someone else. Linux is pandering to their perversion.
alias login "exec su -"
Problem solved...
-- Bringing your mate to a convention is like taking a game warden hunting. -- Matthias Urlichs -- urlichs@smurf.sub.org -- urlichs@smurf.ira.uka.de /(o\ Humboldtstrasse 7 -- 7500 Karlsruhe 1 -- Germany -- +49-721-9612521 \o)/