From owner-freebsd-hackers@FreeBSD.ORG  Thu Jul 23 07:41:03 2009
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 3BA7A106564A
	for <freebsd-hackers@FreeBSD.org>; Thu, 23 Jul 2009 07:41:03 +0000 (UTC)
	(envelope-from ap00@mail.ru)
Received: from mx74.mail.ru (mx74.mail.ru [94.100.176.89])
	by mx1.freebsd.org (Postfix) with ESMTP id ECE148FC1A
	for <freebsd-hackers@FreeBSD.org>; Thu, 23 Jul 2009 07:41:02 +0000 (UTC)
	(envelope-from ap00@mail.ru)
Received: from [91.190.115.253] (port=18539 helo=pstation)
	by mx74.mail.ru with asmtp id 1MTsvE-0001WA-00
	for freebsd-hackers@FreeBSD.org; Thu, 23 Jul 2009 11:41:00 +0400
Date: Thu, 23 Jul 2009 11:43:10 +0400
From: Anthony Pankov <ap00@mail.ru>
X-Mailer: The Bat! (v1.51) Personal
X-Priority: 3 (Normal)
Message-ID: <10490103187.20090723114310@mail.ru>
To: freebsd-hackers@FreeBSD.org
In-Reply-To: <4A679A6B.70905@elischer.org>
References: <19939654343.20090722214221@mail.ru> <4A679A6B.70905@elischer.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Spam: Not detected
X-Mras: Ok
Cc: 
Subject: Re: SGID/SUID on scripts
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Anthony Pankov <ap00@mail.ru>
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Jul 2009 07:41:03 -0000


Thursday, July 23, 2009, 3:02:03 AM, Julian Elischer wrote:

JE> google SUID script security

Preface:

There is a file:

rwxr-sr-x  some:powerg  dothething

Run it: ./dothething

Make shure that process egid isn't powerg.

Resume:
I'm too dumb to ask google "SUID script security" with this preface.


As a result:

May be somebody will correct chmod manual page, my poor english have endowed
me with inablity to do this.


>> 
>> And no mention in chmod(1,2) manual.
>> 
>> 
>> 



-- 
Best regards,
 Anthony                            mailto:ap00@mail.ru