Thank you guys for help with this!

  It is (IMHO) a terrible oversight for the authors of the books I have
not to mention this. I have been going over this all night, if they would
have mentioned that in one simple sentence, I would have a lot more hair
on my head!


    - Jamie






On Tue, 5 Dec 2000 Nick.T.Reinking at supervalu.com wrote:

> Ah ha.  A common misunderstanding.  Every UNIX I know will not allow
> SUID scripts to run.  If you want SUID, either create a C program that runs
> a script and make that SUID, or recompile your kernel to allow it (very not
> recommended.)
> 
> Allowing SUID scripts is a huge security hole.
> 
> Nick Reinking
> 
> 
> 
> 
> 
> 
> jamie at floyd.getsetnet.net, on 12/05/2000 02:03:23 PM
> To: tclug-list at mn-linux.org @ PMDF
> cc:  
> Subject: [TCLUG] Puzzling SUID problem
> 
> 
> 
>   I have spent the last several hours pouring through docs on suid and
> racking my mind. My script isn't working. Here is a long listing of my
> script:
> 
>  -rwsr-sr-- 1 root   wheel         379  Dec 5  12:57  myprog
> 
>   The contents of my prog are:
> 
>   #!/bin/bash
> 
>   cat /root/file1;
> 
>   User Jamie is on the group wheel, but when jamie goes to execute myprog
>   the system qweefs like this:
> 
>   cat: /root/file1: Permission denied
> 
>   I am using Red Hat 6.2. As I am understanding the documentation, since
> jamie is on wheel, when he executes this program, the program will run as
> root, and if the file is running as root, it would have the file access
> privelages as root. Am I wrong?? Evidently I am, but then it would seem to
> be incongruent with what all my books are telling me.
> I have also tried running myprog as root, and it works fine then. One last
> thing I should include is a pic of my root directory where file1 is:
> 
> drwxr-x---  15   root   root      4096  Dec 5  02:32  root
> 
> 
> and here is a long listing of file1:
> 
> -rwxr-xr--   1  root   root       5  Dec 5  01:05  file1
> 
> 
>    - Jme
> 
> _______________________________________________
> tclug-list mailing list
> tclug-list at lists.real-time.com
> https://mailman.real-time.com/mailman/listinfo/tclug-list
> 
> 
>