Re: crontab and sgid (was: nonsuid overflows... still at risk?)

From: Rafal Wojtczuk (nergalat_private)
Date: Sat Jun 09 2001 - 06:13:11 PDT

Next message: KF: "cupsd web admin and the % char"

Previous message: Alex Andrews: "RE: script locations (how to setuo scripts as any extention)"
In reply to: Olaf Kirch: "Re: crontab and sgid (was: nonsuid overflows... still at risk?)"
Next in thread: Bela Lubkin: "Re: nonsuid overflows... still at risk?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 8 Jun 2001, Olaf Kirch wrote:

> On Thu, Jun 07, 2001 at 03:43:19PM +0200, Tomasz Grabowski wrote:
> > I'am wondering if someone too saw sgid bit on the 'crontab' binary and can
> > tell us what is the reason of that situation?
> 
> In fact, Solar has suggested a patch to crontab (I believe it was his
> idea, apologies if it was in fact someone else) that makes crontab
> setgid crontab rather than setuid root. So there are valid reasons for
> a setgid crontab.
> 
> I'm not sure who's using this patch right now, though.
Owl (http://www.openwall.com/Owl) installs setgid crontab by default.

Save yourself,
Nergal

Next message: KF: "cupsd web admin and the % char"
Previous message: Alex Andrews: "RE: script locations (how to setuo scripts as any extention)"
In reply to: Olaf Kirch: "Re: crontab and sgid (was: nonsuid overflows... still at risk?)"
Next in thread: Bela Lubkin: "Re: nonsuid overflows... still at risk?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sat Jun 09 2001 - 10:38:11 PDT