From owner-freebsd-hackers  Wed Jun 26 20:21:52 1996
Return-Path: owner-hackers
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id UAA17783
          for hackers-outgoing; Wed, 26 Jun 1996 20:21:52 -0700 (PDT)
Received: from MindBender.HeadCandy.com (root@[199.238.225.168])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id UAA17760;
          Wed, 26 Jun 1996 20:21:42 -0700 (PDT)
Received: from localhost.HeadCandy.com (michaelv@localhost.HeadCandy.com [127.0.0.1]) by MindBender.HeadCandy.com (8.7.5/8.7.3) with SMTP id UAA01884; Wed, 26 Jun 1996 20:21:07 -0700 (PDT)
Message-Id: <199606270321.UAA01884@MindBender.HeadCandy.com>
X-Authentication-Warning: MindBender.HeadCandy.com: Host michaelv@localhost.HeadCandy.com [127.0.0.1] didn't use HELO protocol
To: -Vince- <vince@mercury.gaianet.net>
cc: "Eric J. Schwertfeger" <ejs@bfd.com>,
        Mark Murray <mark@grumble.grondar.za>, hackers@freebsd.org,
        security@freebsd.org, Chad Shackley <chad@mercury.gaianet.net>,
        jbhunt <jbhunt@mercury.gaianet.net>
Subject: Re: I need help on this one - please help me track this guy down! 
In-reply-to: Your message of Wed, 26 Jun 96 13:55:05 -0700.
             <Pine.BSF.3.91.960626135432.2935B-100000@mercury.gaianet.net> 
Date: Wed, 26 Jun 1996 20:21:02 -0700
From: "Michael L. VanLoon -- HeadCandy.com" <michaelv@HeadCandy.com>
Sender: owner-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk


>> >	It was a remote login so he had to transfer it over somehow...

>> Well, *if* that's true, it still wouldn't be setuid root just from the
>> transfer.  He'd *still* have to get root some other way to make this
>> binary setuid root.
>> But if he's going to do that, why bother copying a binary over the
>> network -- it would just be easier to just snag a copy of your own
>> /bin/sh and mark it setuid root.

>	Hmmm, what happens if he tars it first and then sends it over?

Try it. :-)  That's the only way to figure all this stuff out...

Seriously, you must be root to create a setuid root file.  It doesn't
matter *how* you try to create it.

-----------------------------------------------------------------------------
  Michael L. VanLoon                                 michaelv@HeadCandy.com
        --<  Free your mind and your machine -- NetBSD free un*x  >--
    NetBSD working ports: 386+PC, Mac 68k, Amiga, Atari 68k, HP300, Sun3,
        Sun4/4c/4m, DEC MIPS, DEC Alpha, PC532, VAX, MVME68k, arm32...
    NetBSD ports in progress: PICA, others...

   Roll your own Internet access -- Seattle People's Internet cooperative.
                  If you're in the Seattle area, ask me how.
-----------------------------------------------------------------------------