Date: Tue, 06 Aug 1996 19:23:50 -0000 () From: Luc Chamberland <lchamber@ec.camitel.com> To: Tom Samplonius <tom@sdf.com> Cc: pius@ienet.com, freebsd-hackers@FreeBSD.ORG Subject: Re: su question Message-ID: <XFMail.960806234111.lchamber@ec.camitel.com> In-Reply-To: <Pine.NEB.3.94.960802151945.23891A-100000@misery.sdf.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 02-Aug-96 Tom Samplonius wrote:
>>On Fri, 2 Aug 1996 pius@ienet.com wrote:
>
>> Just out of curiosity,
>>
>> when someone does an su to root, why does su check that the
>> username is explicitly listed as a member of group 0 in /etc/group
>> instead of just making sure that the user is part of that group
>> with getgroups(2)? In other words, why should a user with a group
>> ID of 0 in /etc/passwd also have to be listed as a member of wheel
>> in /etc/group in order to su to root?
>>
>> Thanks,
>> Pius
>
> For security reasons.
>
>Tom
I'm curius!.... Can you tell me what someone can find a hole
in the security?
Thanks,
Wolfrider
[]-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=--=-=-=-=-=[]
| E-Mail : Luc Chamberland <lchamber@ec.camitel.com>
| Date: 08/06/96
| Time: 19:23:50
| Programmeur, Electro-Conception
[]-=-=-=-=-=-=-=-=--=-=-=-=--=-=-=-=-=-=-=-=-=[]
Il n'y a pas de jours sans bonheur....
Il n'y a que des jours ou nous sommes aveugles!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.960806234111.lchamber>