[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: seduid scripts

To: steve@earth.ox.ac.uk (Stephen Usher)
Subject: Re: seduid scripts
From: mh1@irz.inf.tu-dresden.de (Michael Hohmuth)
Date: Tue, 23 Mar 93 13:57:26 MET
Cc: mint@terminator.rs.itd.umich.edu (MiNT Mailer)
In-reply-to: <27579.9303230759@piglet.earth.earth.ox.ac.uk>; from "Stephen Usher" at Mar 23, 93 7:59 am
Reply-to: mint@terminator.rs.itd.umich.edu
Reply-to: hohmuth@freia.inf.tu-dresden.de

Steve writes:

> > [about /bin/scripter]
> 
> This sounds an even more unholy mess than one incidence of / -> \ conversion
> in the kernel! Anyway, it's just one more security hole, not that there
> aren't one or two already! :-)

Why is that an security hole?  `/bin/scripter' would be just another shell
which happens to be setuid-root (just like `su').

IMHO, having a script launcher is better than putting inconsistencies
in the kernel.

Michael
-- 
Internet: hohmuth@freia.inf.tu-dresden.de

Follow-Ups:
- Re: seduid scripts
  - From: Stephen Usher <steve@earth.ox.ac.uk>

References:
- Re: seduid scripts
  - From: Stephen Usher <steve@earth.ox.ac.uk>

Prev by Date: Re: seduid scripts
Next by Date: Re: seduid scripts
Previous by thread: Re: seduid scripts
Next by thread: Re: seduid scripts
Index(es):
- Date
- Thread