Date: 16 Jul 1996 00:07:25 -0400 From: Michael Graff <explorer@flame.org> To: Brian Tao <taob@io.org> Cc: Poul-Henning Kamp <phk@FreeBSD.org>, FREEBSD-SECURITY-L <freebsd-security@FreeBSD.org> Subject: Re: suidness of /usr/bin/login Message-ID: <v64tn8alj5.fsf@zhaneel.flame.org> In-Reply-To: Brian Tao's message of Mon, 15 Jul 1996 22:36:24 -0400 (EDT) References: <Pine.NEB.3.92.960715223420.8904G-100000@zap.io.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Brian Tao <taob@io.org> writes: > Does /usr/bin/login need to be setuid root? Since it is normally > only called by telnetd (which already runs as root), does it have to > be setuid root as well? What else uses it? xterm (which itself is > also setuid root)? Users? you can always use ``login foo'' and that is supposed to let someone else log in, kinda in mid session and all. --Michael
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?v64tn8alj5.fsf>