Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1994_1

Bugtraq archives for 1st quarter (Jan-Mar) 1994: Re: /etc/utmp

Re: /etc/utmp

Marc W. Mengel (mengeldcdmwm.fnal.gov)
Mon, 28 Mar 94 16:38:10 -0600

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Marc W. Mengel: "Re: /etc/utmp"
Previous message: Icarus Sparry: "Re: /etc/utmp"
In reply to: Icarus Sparry: "Re: /etc/utmp"
Next in thread: Icarus Sparry: "Re: /etc/utmp"

In <9403281806.aa08049uk.ac.bath.ss1>  you write:
  

  >Making things setuid root is almost always wrong.   Make a new
  >group, say group "utmp", and make anything that needs to deal with
  >utmp setgid utmp; similarly for mail, etc.  That way if you have
  >something that needs to do mail and utmp, you can just put it in
  >multiple groups.

  Nice idea. The problem is that in the inode on a standard Unix
  implementation there is only room for 1 repeat 1 group. Also in the
  'u' area, there is only room for 1 primary group, 1 effective group
  etc. This means that something like your program which needs to do
  something with utmp and mail will not be able to do so, unless the
  group for altering mail is the same as the group for altering utmp.

Much better is to start it off as root, let it run that way just long
enough to set its group list, and then setuid to someone boring and
do whatever might have bugs...

Marc

Next message: Marc W. Mengel: "Re: /etc/utmp"
Previous message: Icarus Sparry: "Re: /etc/utmp"
In reply to: Icarus Sparry: "Re: /etc/utmp"
Next in thread: Icarus Sparry: "Re: /etc/utmp"