Date: Tue, 16 Jul 1996 10:46:50 -0400 From: Garrett Wollman <wollman@lcs.mit.edu> To: Brian Tao <taob@io.org> Cc: Poul-Henning Kamp <phk@freebsd.org>, FREEBSD-SECURITY-L <freebsd-security@freebsd.org> Subject: suidness of /usr/bin/login Message-ID: <9607161446.AA20265@halloran-eldar.lcs.mit.edu> In-Reply-To: <Pine.NEB.3.92.960715223420.8904G-100000@zap.io.org> References: <4914.837416816@critter.tfs.com> <Pine.NEB.3.92.960715223420.8904G-100000@zap.io.org>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Mon, 15 Jul 1996 22:36:24 -0400 (EDT), Brian Tao <taob@io.org> said: > On Mon, 15 Jul 1996, Poul-Henning Kamp wrote: >> >> Make a list of them all, remove setuid on any you don't use. Consider >> carefully the minimum permissions you can get away with on the rest. > Does /usr/bin/login need to be setuid root? Yes. It is intended to be executable interactively from the command line: user1@foo$ exec login user2 Password: user2@foo$ -GAWollman -- Garrett A. Wollman | Shashish is simple, it's discreet, it's brief. ... wollman@lcs.mit.edu | Shashish is the bonding of hearts in spite of distance. Opinions not those of| It is a bond more powerful than absence. We like people MIT, LCS, ANA, or NSA| who like Shashish. - Claude McKenzie + Florent Vollant
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9607161446.AA20265>