[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [K12OSN] setuid root


the leading '0' does NOT indicate suid root.  

In fact the leading '0' turns OFF suid.
A leading '4' will turn on suid.

Take a look at the manpage on chmod.

I think what you need is something like this:

   chmod 4755 ncpmount

That should give you a mode that looks like this:


BUT, keep in mind that in general, setting a binary
as suid root can be a HUGE security hole.

Any user running the ncpmount command will actually have
root priviledges for the short time that the command runs.
But, if there is a vulnerability in the command, such as 
a buffer overflow problem, it could be used to launch other
commands as root, and that's a bad thing.

Hope that helps,

Jim McQuillan
jam Ltsp org 

On Thu, 16 May 2002, Aaron Leininger wrote:

> I am getting the following error when I attempt to run ncpmount as a
> non-root user:
> "Must be installed suid root..." and it doesn't run.
> I looked up the suid root concept on the web and it was suggested on a web
> site that in order to set an app to be "suid root" I had to do a chmod 0xxx
> <filename> where xxx is previous chmod bits. The leading 0 was supposed to
> set the app to run as root. It doesn't work. I still cannnot launch ncpmount
> as any user other than root. I need to be able to do this so that students
> can mount volumes from a netware server.
> FYI my current settings for ncpmount are: _rwxr_xr_x owned by root and group
> set to root.
> Please help.
> Thanks,
> Aaron
> _______________________________________________
> K12OSN mailing list
> K12OSN redhat com
> https://listman.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]