setperms on linux

Bill Campbell bill at celestial.com
Wed Apr 12 15:56:04 PDT 2006


On Wed, Apr 12, 2006, Brian K. White wrote:
>Anyone using suse 10 by any chance?
>
...
>Both the stock setperms and my improved copy have pairs of chmod & chown 
>commands in the order of chmod, then chown.
>
>Some genius has changed something somewhere such that chown now wipes off 
>the suid bit!

This has been around for quite a while (I think even old SCO
OpenServer systems do it).  The idea is to prevent security
problems if somebody has a directory with the wrong permissions
or some such that allows an unpriviledged user to create a setuid
program, then ``chown root'' or some such.  The chmod must be
done after any chown/chgrp commands.

Bill
--
INTERNET:   bill at Celestial.COM  Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/  PO Box 820; 6641 E. Mercer Way
FAX:            (206) 232-9186  Mercer Island, WA 98040-0820; (206) 236-1676

The essence of all slavery consists in taking the produce of another's
labor by force. It is immaterial whether this force be founded on ownership
of the slave or ownership of the money that he must get to live on.
    Leo Tolstoy 1891


More information about the Filepro-list mailing list