From owner-freebsd-security  Wed Aug 11  9:39:33 1999
Delivered-To: freebsd-security@freebsd.org
Received: from dt011n65.san.rr.com (dt011n65.san.rr.com [204.210.13.101])
	by hub.freebsd.org (Postfix) with ESMTP id 710DA155A4
	for <freebsd-security@freebsd.org>; Wed, 11 Aug 1999 09:39:27 -0700 (PDT)
	(envelope-from Doug@gorean.org)
Received: from gorean.org (master [10.0.0.2])
	by dt011n65.san.rr.com (8.9.3/8.8.8) with ESMTP id JAA67313;
	Wed, 11 Aug 1999 09:28:18 -0700 (PDT)
	(envelope-from Doug@gorean.org)
Message-ID: <37B1A4A3.8ACCCE48@gorean.org>
Date: Wed, 11 Aug 1999 09:28:19 -0700
From: Doug <Doug@gorean.org>
Organization: Triborough Bridge & Tunnel Authority
X-Mailer: Mozilla 4.61 [en] (X11; U; FreeBSD 4.0-CURRENT-0730 i386)
X-Accept-Language: en
MIME-Version: 1.0
To: "Andrey E. Lerman" <lae@uniyar.ac.ru>
Cc: freebsd-security@freebsd.org
Subject: Re: info on suid/sgid files
References: <19990811043211.X16510@uniyar.ac.ru>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

"Andrey E. Lerman" wrote:
> 
> [I'm sorry if it was discussed before, but archives search is
> not working right now. :( ]
> I did a quick search for a suid/sgid files on our server's hd
> and found a lot. I really didn't expected so many. I removed
> bits on about 80% of it without any visible (yet) impact to
> system's operation. So I'm wondering, where to find info about
> what these suid/sgid bits was for and what I loose removing
> them. Some of progs I chmod'ed really amazed me, for example
> quota, df, ps, dump, restore, shutdown...

	Well, it's unfortunate because I know you said it's down, but the best
source for this info is the archive. This is definitely a frequent topic of
conversation. And I agree, the list is quite long, and contains many
seldom-used items that I would like to see made into ports. 

> It would be nice if info about need of increased privileges
> needed for given program would be clearly stated in manpage.

	Here is your chance to contribute to the project! After you've done your
research, submit diffs to the current man pages. You are not the first to
ask for this, but you *could* be the first to actually get it done. 

Doug


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message