Re: Sudo from scripts

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Community assistance, encouragement, and advice for using Fedora." <fedora-list@xxxxxxxxxx>
Subject: Re: Sudo from scripts
From: Gordon Messmer <yinyang@xxxxxxxxx>
Date: Tue, 18 Nov 2008 08:25:09 -0800
In-reply-to: <4922E198.2050005@xxxxxxxxxxxxxxxx>
References: <4915B194.3080904@xxxxxxx> <20081108154311.GC477@xxxxxxxxxxxxxxxxxxxxxxx> <4916DE79.7040505@xxxxxxx> <49210589.3030802@xxxxxxxxxxxxx> <49216787.90306@xxxxxxx> <4921AD15.1050904@xxxxxxxxxxxxx> <1226949436.732.22.camel@xxxxxxxxxxxxxxxxxx> <4921E8A5.9040103@xxxxxxxxxxxxx> <1226963708.3198.18.camel@xxxxxxxxxxxxxxxxxx> <49223386.60508@xxxxxxxxxxxxx> <1227015902.5758.6.camel@xxxxxxxxxxxxxxxxxx> <4922E198.2050005@xxxxxxxxxxxxxxxx>
Reply-to: "Community assistance, encouragement, and advice for using Fedora." <fedora-list@xxxxxxxxxx>
User-agent: Thunderbird 2.0.0.17 (X11/20081009)

Mikkel L. Ellertson wrote:

Patrick O'Callaghan wrote:

In any case, the owner of the script is only security-relevant in two
cases: 1) if it allows someone to edit the script who normally couldn't,
or 2) if the script is setuid. Of course it could also change who can
*execute* the script, but if it's not setuid they'll be doing it as
themselves, not as the owner.

Does setuid work on scrips? I know it did not in the past, but I
have not checked to see if that has changed.

No, it doesn't, and it never will. Making "root" a script's owner isnot a "security issue".


--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines

Follow-Ups:
- Re: Sudo from scripts
  - From: Jerry Feldman

References:
- Sudo from scripts
  - From: Jerry Feldman
- Re: Sudo from scripts
  - From: Todd Zullinger
- Re: Sudo from scripts
  - From: Jerry Feldman
- Re: Sudo from scripts
  - From: g
- Re: Sudo from scripts
  - From: Jerry Feldman
- Re: Sudo from scripts
  - From: g
- Re: Sudo from scripts
  - From: Patrick O'Callaghan
- Re: Sudo from scripts
  - From: g
- Re: Sudo from scripts
  - From: Patrick O'Callaghan
- Re: Sudo from scripts
  - From: g
- Re: Sudo from scripts
  - From: Patrick O'Callaghan
- Re: Sudo from scripts
  - From: Mikkel L. Ellertson

Prev by Date: Re: Sudo from scripts
Next by Date: Re: mplayer streaming on F9 and F10
Previous by thread: Re: Sudo from scripts
Next by thread: Re: Sudo from scripts
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]