Suid script security
Mark Wolfe
markw at hpdmd48.boi.hp.com
Fri Aug 10 01:10:46 AEST 1990
I know that suid scripts are a bad idea from reading comp.questions and
comp.wizards over the last year or so. It seems that just about every guru
in the world has posted a warning NOT to do it, so I decided I would follow
the advice (it's a rare subject that all guru's agree on). However, it appears
that I'm now about to have one of these ugly animals forced on me from above,
so I'd like some advice:
1) Just what are the security risks involved? (i.e. how would someone attack
a system via one of these).
2) What can I do to make this as secure as possible?
I know these questions have been asked and answered before on the net, but
I didn't save the notes because as I said before, I'd just planned never to do
it.
Please help. If the answers are too sensitive (especially for no. 1), please
email your answers.
markw at hpbs1529.boi.hp.com
Mark
Always remember: where ever you go...there you are.
- Buckaroo Bonzai
More information about the Comp.unix.questions
mailing list