setuid programs

Jason jkenner@mindspring.com
Mon, 15 Jan 2001 05:05:37 +0000


plug@arcticmail.com wrote:
> 
> 1. Try "chmod 500 /bin/ps".
> 
> 2. grep all source code for "not secure for set uid operation".
>    Modify the source code to disable this "feature."
>    Compile.

hell, greping the relevant binarys for that string might even be a
good idea... why would one be using iBCS and a SCO binary if one could
recompile?

-- 
jkenner @ mindspring . com__
I Support Linux:           _> _  _ |_  _  _     _|
Working Together To       <__(_||_)| )| `(_|(_)(_|
To Build A Better Future.       |                   <s>