FreeBSD Security Advisory FreeBSD-SA-04:01.mksnap_ffs part 2
Radko Keves
rado at studnet.edu.eu.org
Fri Jan 30 09:02:10 PST 2004
hi
i read FreeBSD Security Advisory FreeBSD-SA-04:01.mksnap_ffs
and have question about this workaround:
/bin/rm /sbin/mksnap_ffs
isn't better to do:
/bin/chmod u-s /sbin/mksnap_ffs
i think that suid flag is dangerous on this program not program as is
and when suid flag is down program is clear for everyone except root
if is dangerous program, so erase it isn't good workaround, because
every user can compile mksnap_ffs from source but suid flag can give
only root
thank and bye
--
"The ancient Greeks' concept of a ``personal daemon'' was similar to
the modern concept of a ``guardian angel'' --- ``eudaemonia'' is the
state of being helped or protected by a kindly spirit. As a rule,
UNIX systems seem to be infested with both daemons and demons."
[Evi Nemeth]
More information about the freebsd-questions
mailing list