From owner-freebsd-security  Tue Jul 16 07:48:22 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id HAA29449
          for security-outgoing; Tue, 16 Jul 1996 07:48:22 -0700 (PDT)
Received: from halloran-eldar.lcs.mit.edu (halloran-eldar.lcs.mit.edu [18.26.0.159])
          by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id HAA29367;
          Tue, 16 Jul 1996 07:48:00 -0700 (PDT)
Received: by halloran-eldar.lcs.mit.edu; (5.65/1.1.8.2/19Aug95-0530PM)
	id AA20265; Tue, 16 Jul 1996 10:46:50 -0400
Date: Tue, 16 Jul 1996 10:46:50 -0400
From: Garrett Wollman <wollman@lcs.mit.edu>
Message-Id: <9607161446.AA20265@halloran-eldar.lcs.mit.edu>
To: Brian Tao <taob@io.org>
Cc: Poul-Henning Kamp <phk@freebsd.org>,
        FREEBSD-SECURITY-L <freebsd-security@freebsd.org>
Subject: suidness of /usr/bin/login
In-Reply-To: <Pine.NEB.3.92.960715223420.8904G-100000@zap.io.org>
References: <4914.837416816@critter.tfs.com>
	<Pine.NEB.3.92.960715223420.8904G-100000@zap.io.org>
Sender: owner-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

<<On Mon, 15 Jul 1996 22:36:24 -0400 (EDT), Brian Tao <taob@io.org> said:

> On Mon, 15 Jul 1996, Poul-Henning Kamp wrote:
>> 
>> Make a list of them all, remove setuid on any you don't use.  Consider
>> carefully the minimum permissions you can get away with on the rest.

>     Does /usr/bin/login need to be setuid root?  

Yes.  It is intended to be executable interactively from the command
line:

user1@foo$ exec login user2
Password:
user2@foo$

-GAWollman

--
Garrett A. Wollman   | Shashish is simple, it's discreet, it's brief. ... 
wollman@lcs.mit.edu  | Shashish is the bonding of hearts in spite of distance.
Opinions not those of| It is a bond more powerful than absence.  We like people
MIT, LCS, ANA, or NSA| who like Shashish.  - Claude McKenzie + Florent Vollant