FC4 setuid executable changes
Matthew Miller
mattdm at mattdm.org
Fri May 27 12:21:36 UTC 2005
On Fri, May 27, 2005 at 12:09:47PM +0100, Joe Orton wrote:
> Here's the diff of changes in setuid apps since FC3:
[...]
> -/usr/bin/newgrp root root -rws--x--x
> +/usr/bin/newgrp root root -rwsr-xr-x
Hmmmm -- seems like keepin' em non-readable isn't a huge gain in the days of
open source, but still, is there a reason *not* to do it?
> +/usr/bin/screen root utmp -rwxr-sr-x
Isn't there 'utempter' to deal with this?
[...]
> +/usr/bin/sudoedit root root ---s--x--x
I think this is just a hardlink to the existing sudo program:
-e
The -e (edit) option indicates that, instead of running a command, the
user wishes to edit one or more files. In lieu of a command, the string
``sudoedit'' is used when consulting the sudoers file. If the user is
authorized by sudoers the following steps are taken:
1. Temporary copies are made of the files to be edited with the owner set
to the invoking user.
2. The editor specified by the VISUAL or EDITOR environment variables is
run to edit the temporary files. If neither VISUAL nor EDITOR are set,
the program listed in the editor sudoers variable is used.
3. If they have been modified, the temporary files are copied back to
their original location and the temporary versions are removed.
--
Matthew Miller mattdm at mattdm.org <http://www.mattdm.org/>
Boston University Linux ------> <http://linux.bu.edu/>
Current office temperature: 73 degrees Fahrenheit.
More information about the Fedora-maintainers
mailing list