OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: suid files
From: Keith Dickinson (nanookVLAN.NET)
Date: Fri Sep 15 2000 - 15:10:24 CDT


Crontab doesn't have to have suid on it. It's a config file. Cron
however, does need it.

At 11:51 AM 9/15/2000, QBA wrote:
>Hi,
>
>I've just learned that files with permission 4000 can be used to
>gain root privileges. How is it possible? And there was also written
>that the less such files on system the better for its security.
>But how am I to know if for example /usr/bin/crontab file must be
>suid or not? Are there any files that have to be suids? And if yes,
>does it mean that every system has security hole? BTW after reading
>the article I run "find / -perm +4000" on my RedHat 6.2 and found 42
>such files. Should be less of them or it is ok?
>Thank you for your advices,
>
>QBA