[clue-tech] Using SUID to downgrade root's access
Dennis J Perkins
dperkins at techangle.com
Mon May 23 22:05:19 MDT 2005
If you really need SUID, you could probably make a very simple C program
that will call the script, then set SUID on that program. But is it
really necessary to use SUID?
On Tue, 2005-05-24 at 00:02 -0400, Angelo Bertolli wrote:
> David Anselmi wrote:
>
> > Angelo Bertolli wrote:
> >
> >> I've been trying to set the SUID bit to make an executable (in this
> >> case a shell script) run as a certain user. In particular this is
> >> something I'd like to be run as "nobody." So I used `chown nobody`
> >> and `chmod u+s`
> >
> >
> > This:
> >
> > http://scrye.com/~kevin/lsh/april-99/Security-HOWTO-5.html
> >
> > says (just before section 5.3) that the kernel ignores SUID on shell
> > scripts. That's what I've always heard so probably you can't do it.
>
>
> Yep, that was it. Thanks.
> _______________________________________________
> CLUE-tech mailing list
> CLUE-tech at clue.denver.co.us
> http://clue.denver.co.us/mailman/listinfo/clue-tech
>
More information about the clue-tech
mailing list