Re: [Debian 2.0] /usr/bin/suidexec gives root access

From: Joey Hess (joeyat_private)
Date: Tue Apr 28 1998 - 14:32:54 PDT

Next message: David LeBlanc: "Re: name of built-in administrator"

Previous message: Russell Coker - mailing lists account: "Re: [Debian 2.0] /usr/bin/suidexec gives root access"
Maybe in reply to: Thomas Roessler: "[Debian 2.0] /usr/bin/suidexec gives root access"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Russell Coker - mailing lists account wrote:
> >Executive summary: /usr/bin/suidexec gives every user a
> >root shell.  Remove it.
>
>   Also change the suidexec line in /etc/suid.conf to the following so it never
> gets the SUID bit again: suidmanager /usr/bin/suidexec root root 755
>                                        ^^^^
> The default is 4755.

A simpler fix is to just upgrade to suidmanager 0.19 (from
ftp://ftp1.us.debian.org/debian/Incoming/suidmanager_0.19_all.deb), which
removes the suidexec program entirely.

--
see shy jo

Next message: David LeBlanc: "Re: name of built-in administrator"
Previous message: Russell Coker - mailing lists account: "Re: [Debian 2.0] /usr/bin/suidexec gives root access"
Maybe in reply to: Thomas Roessler: "[Debian 2.0] /usr/bin/suidexec gives root access"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:51:37 PDT