Date: Sun, 3 Aug 1997 16:51:16 +0200 From: Philippe Regnauld <regnauld@deepo.prosa.dk> To: "Jonathan A. Zdziarski" <jonz@netrail.net> Cc: freebsd-security@freebsd.org Subject: Re: setuid shutdown? Message-ID: <19970803165116.24551@deepo.prosa.dk> In-Reply-To: <Pine.BSF.3.95q.970803100305.4197B-100000@netrail.net>; from Jonathan A. Zdziarski on Sun, Aug 03, 1997 at 10:05:45AM %2B0000 References: <Pine.BSF.3.95q.970803100305.4197B-100000@netrail.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Jonathan A. Zdziarski writes: > > Also: I noticed that 2.2.2 installs /usr/bin/perl (4) and a setuid root > version of it as well (found this out when I noticed that adduser and > rmuser are perl and not c). If I'm not mistaken 4 has some major security > problems with setuid perl, no? Fixed in FreeBSD 2.2.1, IIRC -- check the list archives. -- -- Phil -[ Philippe Regnauld / Systems Administrator / regnauld@prosa.dk ]- -[ Location.: +55.4N +11.3E PGP Key: finger regnauld@hotel.prosa.dk ]-
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19970803165116.24551>