Date: Sun, 26 Oct 2003 11:36:10 -0500 From: Allen Landsidel <all@biosys.net> To: Jim <waif@ntropolis.com>, freebsd-questions@freebsd.org Subject: Re: SUID /usr/bin/rsh on Stable 4.8 after installworld Message-ID: <6.0.0.22.0.20031026113459.024434d0@pop.hotpop.com> In-Reply-To: <OCEOIEJGIDKIHFOMMCODMEPDCHAA.waif@ntropolis.com> References: <OCEOIEJGIDKIHFOMMCODMEPDCHAA.waif@ntropolis.com>
next in thread | previous in thread | raw e-mail | index | archive | help
At 09:10 10/26/2003, Jim wrote: [snip] >At some point in this process however, I get to cvsup, buildworld, and >installworld. This process re-enables the old permissions on the files I so >diligently locked down. I would expect there is a flag or include/exclude >file somewhere I need to lookup to prevent cvsup from doing this in the >first place, but like I said, I'm new. > >The problem I need help with though, is the fact that I cannot chmod 000 >certain binaries after this process (for example: /usr/bin/rsh, >/usr/bin/yppasswd, /usr/bin/ypchfn, etc.). The following occurs: > ># chmod 000 /usr/bin/rsh >chmod: /usr/bin/rsh: Operation not permitted chflags is what you want man chflags specifically the schg flag.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.0.0.22.0.20031026113459.024434d0>