Vulnerability Development mailing list archives
Re: crontab and sgid (was: nonsuid overflows... still at risk?)
From: Olaf Kirch <okir () caldera de>
Date: Fri, 8 Jun 2001 10:18:40 +0200
On Thu, Jun 07, 2001 at 03:43:19PM +0200, Tomasz Grabowski wrote:
I'am wondering if someone too saw sgid bit on the 'crontab' binary and can tell us what is the reason of that situation?
In fact, Solar has suggested a patch to crontab (I believe it was his
idea, apologies if it was in fact someone else) that makes crontab
setgid crontab rather than setuid root. So there are valid reasons for
a setgid crontab.
I'm not sure who's using this patch right now, though.
Olaf
--
Olaf Kirch | --- o --- Nous sommes du soleil we love when we play
okir () monad swb de | / | \ sol.dhoop.naytheet.ah kin.ir.samse.qurax
okir () caldera de +-------------------- Why Not?! -----------------------
UNIX, n.: Spanish manufacturer of fire extinguishers.
Current thread:
- Re: TCSH problems?, (continued)
- Re: TCSH problems? Branko Ivanovic (Jun 06)
- Re: TCSH problems? Lee Smith (Jun 06)
- Re: TCSH problems? sean (Jun 07)
- Re: TCSH problems? poke (Jun 07)
- Re: nonsuid overflows... still at risk? Andrew R. Reiter (Jun 06)
- Re: nonsuid overflows... still at risk? Michal Zalewski (Jun 06)
- Re: nonsuid overflows... still at risk? KF (Jun 06)
- Re: nonsuid overflows... still at risk? Michal Zalewski (Jun 06)
- Re: nonsuid overflows... still at risk? KF (Jun 06)
- crontab and sgid (was: nonsuid overflows... still at risk?) Tomasz Grabowski (Jun 07)
- Re: crontab and sgid (was: nonsuid overflows... still at risk?) Olaf Kirch (Jun 08)
- Re: crontab and sgid (was: nonsuid overflows... still at risk?) Rafal Wojtczuk (Jun 09)
- Re: nonsuid overflows... still at risk? KF (Jun 06)