Date: Thu, 16 Dec 1999 15:25:49 -0600 From: Tim Tsai <tim@futuresouth.com> To: Robert Watson <robert+freebsd@cyrus.watson.org> Cc: freebsd-security@FreeBSD.ORG Subject: Re: From BugTraq - FreeBSD 3.3 xsoldier root exploit (fwd) Message-ID: <19991216152548.A21327@futuresouth.com> In-Reply-To: <Pine.BSF.3.96.991216135055.26813G-100000@fledge.watson.org> References: <14425.12637.308602.637788@anarcat.dyndns.org> <Pine.BSF.3.96.991216135055.26813G-100000@fledge.watson.org>
index | next in thread | previous in thread | raw e-mail
> HAS_MISC_SET_ID= {yes,no}
> HAS_ROOT_SETUID= {yes,no}
How about just:
HAS_SETUID = {no, user[s]}
example:
HAS_SETUID = root
HAS_SETUID = no
HAS_SETUID = dialer uucp
HAS_SETUID = games
personally I'd also like to see a flag with Make for ports that forces
installation of SETUID programs but by default rejects installation of
SETUID programs.
Tim
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19991216152548.A21327>