Date: Wed, 01 Jan 2003 12:57:26 -0700 From: Nick Wood <nick@shadowlink.net> To: freebsd-questions@freebsd.org Subject: SUIDDIR - security Message-ID: <5.1.0.14.2.20030101124646.03cee608@mail.shadowlink.net>
next in thread | raw e-mail | index | archive | help
I'm thinking of enabling SUIDDIR on a web server that offers CGI -possibly even shell access if there's a difference. This is mentioned in several man pages: "It provides security holes for shell users and as such should not be used on shell machines, especially on home directories." With regards to creating files/etc, it mentions: "Execute bits are removed from the file, and it will not be given to root." With that in mind, can anyone give me a specific example on how this can pose a security risk? Nick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.1.0.14.2.20030101124646.03cee608>