[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SUID / SGID

To: misc@openbsd.org
Subject: SUID / SGID
From: Michael Hilscher <misc-openbsd@michael-hilscher.de>
Date: Thu, 2 Jan 2003 00:24:12 +0100
Content-Disposition: inline
User-Agent: Mutt/1.3.22.1i

Hallo,

i'm sure that this question comes up often. But i was not abled to find
the searched information on the bsd website or even the misc archiv.
Maybe i searched wrong and somebody could give me further advise?

I'm wondering about the SGID Bit (group = root) on Directory:
/var/audit. On my minimalistic Webserver(-testinstallation) this
Directory is empty. So I realy cant imagine why SGID is set on it ,-)

Also I'm not sure about the SUID-Bits on following Files:
/usr/libexec/auth/login_*
/usr/libexec/lockspool
/usr/libexec/ssh-keysign

which one of them are really needed? On my System are no User Accounts
needed (just one for usinig su / sudo). Can I remove those SUID-Bits 
without getting trouble - i think ssh-keysign could used in an secure
way direct as root, and it may be better to use it direct as root then
got an SUID-Bit on it?


greetinXs,         
Michael Hilscher  

-- 
Would Mozart have been more productive if he had scribes to help him, a
secretary and a CEO to lead his way? -- Linus Torvalds

Prev by Date: nfsd and linux-clients
Next by Date: Re: kernel problem in nsphy0 at xl0 phy 24
Prev by thread: nfsd and linux-clients
Next by thread: Are the FSF helpful?
Index(es):
- Date
- Thread