From owner-freebsd-questions Thu Jul 27 13:53:48 2000 Delivered-To: freebsd-questions@freebsd.org Received: from wilsonandhorton.co.nz (fw2.wilsonandhorton.co.nz [203.99.66.4]) by hub.freebsd.org (Postfix) with ESMTP id 1FAFD37C0DD for ; Thu, 27 Jul 2000 13:53:45 -0700 (PDT) (envelope-from jonc@itouch.co.nz) Received: (from jonc@localhost) by wilsonandhorton.co.nz (8.9.3/8.9.3) id IAA87192; Fri, 28 Jul 2000 08:53:35 +1200 (NZST) (envelope-from jonc) Date: Fri, 28 Jul 2000 08:53:35 +1200 From: Jonathan Chen To: Chris Moline Cc: freebsd-questions@FreeBSD.ORG Subject: Re: How come halt has to be suid to work? Message-ID: <20000728085335.A87002@jonc.ntdns.wilsonandhorton.co.n> References: <3.0.3.32.20000726233343.0068b930@theboss.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <3.0.3.32.20000726233343.0068b930@theboss.net>; from chris@theboss.net on Wed, Jul 26, 2000 at 11:33:43PM -0700 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Wed, Jul 26, 2000 at 11:33:43PM -0700, Chris Moline wrote: > Usually when I finish up on my system I am working as root and so I never > noticed this before. The permissions were 555 but every time I used halt as > an ordinary user I got operation not permitted. I fixed this problem by > changing the permissions to 4550. Why does it have to be like this? Well, halt *should* be just 555 so that it is only operative if root runs it. If it is a set-uid root program, any user that logs on will be able to halt the machine! -- Jonathan Chen ---------------------------------------------------------------------- "You can get farther with a kind word and a gun than you can with a kind word alone" - Al Capone To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message