Complex security mechanism is unsecure (was Re: non-superuser chown(2)s considered harmful)

Kristoffer Eriksson ske at pkmab.se
Thu Dec 13 05:01:26 AEST 1990


In article <6874 at titcce.cc.titech.ac.jp> mohta at necom830.cc.titech.ac.jp (Masataka Ohta) writes:
>In general, making some application set-uid to root is more secure
>than making it set-uid to, say, uucp.
>
>In the latter case, you must be careful that no unauthorized person can
>have uucp nor root priviledge.

But that is fairly easy to prevent for a non-user account. Just make it
impossible to login to that account.

(If, in stead, you break into that account by using some bug in some
set-uid program owned by that account, then it wouldn't exactly be more
secure to have that program owned by root, so that is no way to avoid my
argument.)

-- 
Kristoffer Eriksson, Peridot Konsult AB, Hagagatan 6, S-703 40 Oerebro, Sweden
Phone: +46 19-13 03 60  !  e-mail: ske at pkmab.se
Fax:   +46 19-11 51 03  !  or ...!{uunet,mcsun}!sunic.sunet.se!kullmar!pkmab!ske



More information about the Comp.unix.internals mailing list