Hi,
I believe having less root setuid binaries on system is The Way ...
so:
Why does RH6.2 ships with /sbin/dump & /sbin/restore root setuid? These
are for sysadmins, not for regular users I hope.
Is /sbin/unix_chkpwd really used and what is it used for? I haven't find
anything about it in pam documentation.
Is it really necessary to ship /usr/bin/gpasswd and /usr/bin/newgrp? Does
anybody really use them on Linux? Maybe these should be extras ... (maybe
they are needed by POSIX or something similar).
What is /usr/bin/sperl5.00503 (suidperl) being used for? Why this doesn't
have a manpage? Is it necessary?
According to glibc documentation /usr/libexec/pt_chown doesn't need to be
setuid nor is not used at all on RH6.2 (see /usr/doc/glibc-2.1.3/INSTALL),
why does RH6.2 ships it setuid root?
Does /sbin/netreport need root setgid bit? I could not find it being used
somewhere by regular users for any good reasons ...
Have a nice day
--
< Martin Mačok martin macok underground cz <iso-8859-2>
\\. http://kocour.ms.mff.cuni.cz/~macok/ http://underground.cz/ .//
\\\.. .-= t.r.u.s.t n.0 o.n.e =-. ..///
Attachment:
pgp00000.pgp
Description: PGP signature