Date: Mon, 23 Sep 2013 12:51:52 +0100 From: Frank Leonhardt <frank2@fjl.co.uk> To: freebsd-questions@freebsd.org Subject: Re: What is Negative permissions Message-ID: <52402B58.5010505@fjl.co.uk> In-Reply-To: <52401DDF.9080502@eskk.nu> References: <52401DDF.9080502@eskk.nu>
next in thread | previous in thread | raw e-mail | index | archive | help
On 23/09/2013 11:54, Leslie Jensen wrote: > > In the daily security run I see the following: > > > > Checking setuid files and devices: > > Checking negative group permissions: > 3791965 -rwxr--r-x 1 admin wheel 172 Mar 9 10:59:55 2011 > /usr/home/admin/bin/noip_update.sh > > > Is it just a reminder that the group has no x permissions or should I > give those permissions? Yes, basically. It's obviously very odd to give everyone OTHER than :wheel members permission to run it. What about user root in group wheel - is root allowed to run it? Actually, yes, even though you might think you've forbidden members of "wheel". Regards, Frank.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?52402B58.5010505>