Date: Wed, 09 Jun 1999 13:14:47 +0200 From: Sheldon Hearn <sheldonh@uunet.co.za> To: jj@cybernex.net.au Cc: freebsd-security@FreeBSD.ORG Subject: Re: setuid diff Message-ID: <56925.928926887@axl.noc.iafrica.com> In-Reply-To: Your message of "Wed, 09 Jun 1999 20:42:37 %2B1000." <199906091040.UAA28635@cybernex.net.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 09 Jun 1999 20:42:37 +1000, "Jacob Rhoden" wrote: > shells.dominoid.dhs.org setuid diffs: > 4c4 > < -r-x--s--x 1 jj jj 15111 Jun 7 00:48:43 1999 > /home/jj/afip/afip.log Anyone can execute afip.log (assuming it's a runnable binary). The process created will have the runner's UID, but with the effective GID of group jj. Looks like a mistake or a user offering other users on your box a service in what he thinks is a sneaky way. Ciao, Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?56925.928926887>