Date: Tue, 13 Nov 2001 10:46:51 +0200 From: Sheldon Hearn <sheldonh@starjuice.net> To: Christoph Kukulies <kuku@gilberto.physik.rwth-aachen.de> Cc: freebsd-security@freebsd.org Subject: Re: nosuid, suidperl Message-ID: <23787.1005641211@axl.seasidesoftware.co.za> In-Reply-To: Your message of "Tue, 13 Nov 2001 09:31:44 %2B0100." <200111130831.fAD8Vik70191@gilberto.physik.rwth-aachen.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 13 Nov 2001 09:31:44 +0100, Christoph Kukulies wrote: > The mount(8) manpage says: > > nosuid Do not allow set-user-identifier or set-group-identifier > bits to take effect. Note: this option is worthless if a > public available suid or sgid wrapper like suidperl(1) is > installed on your system. > > In howfar does this compromise security? The default FreeBSD distribution doesn't offer a setuid root suidperl(1) program, but it's worth checking your specific installation with 'ls -l /usr/bin/suidperl'. Ciao, Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?23787.1005641211>