Date: Tue, 13 Nov 2001 12:23:54 +0300 From: "Magdalinin Kirill" <bsdforumen@hotmail.com> To: sheldonh@starjuice.net Cc: freebsd-security@freebsd.org Subject: Re: nosuid, suidperl Message-ID: <F747mPotpmQ6PEJvWKt00023b1e@hotmail.com>
next in thread | raw e-mail | index | archive | help
>The default FreeBSD distribution doesn't offer a setuid root suidperl does it? Do you know if it comes with apache(suexec)? The reason I ask is that there is suidperl and the only distribution that might use it is apache. Can I safely chmod it to 750? thanks, Kirill Magdalinin bsdforumen@hotmail.com >From: Sheldon Hearn <sheldonh@starjuice.net> >To: Christoph Kukulies <kuku@gilberto.physik.rwth-aachen.de> >CC: freebsd-security@freebsd.org >Subject: Re: nosuid, suidperl >Date: Tue, 13 Nov 2001 10:46:51 +0200 > >On Tue, 13 Nov 2001 09:31:44 +0100, Christoph Kukulies wrote: > > > The mount(8) manpage says: > > > > nosuid Do not allow set-user-identifier or >set-group-identifier > > bits to take effect. Note: this option is >worthless if a > > public available suid or sgid wrapper like >suidperl(1) is > > installed on your system. > > > > In howfar does this compromise security? > >The default FreeBSD distribution doesn't offer a setuid root suidperl(1) >program, but it's worth checking your specific installation with 'ls -l >/usr/bin/suidperl'. > >Ciao, >Sheldon. > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?F747mPotpmQ6PEJvWKt00023b1e>