2005-07-14T16:16:53Z 2005-07-14T16:16:53Z 2005-07-14T16:16:53Z http://neil.brown.name/blog/20050714161653 <p>We have several thousand customers, mostly students. Many of them have no idea what a setuid bit is, and don't really need to know. This has lead to several hundred setuid or setgid files that really should be set-id. This may not actually be a real security threat (a setuid image file cannot do much) but there is the potential for a security problem. <p>Also, allowing setuid files means that someone with temporary elevated privileges can (a workstation left logged-on) can easily elevant them to permanent privileges. This can be alleviated by reguilar scanning, but for this you need a lisdt of allowed setuid programs, and if you have decided to have such a list, there are better ways than scanning. <p>So I have written a little program that can give setuid functionality to customers whose homedirectory is on a filesystem that is mounted with <b>nosetuid</b>. The program requires all setuid programs to be recorded in a control file - <tt>/etc/suidrun.rc</tt>. Providing such files pass some simple tests, they can be run as though the setuid bit were really working. <p>The program in available under the GPL from <a href="http://www.cse.unsw.edu.au/~neilb/source/suidrun/">http://www.cse.unsw.edu.au/~neilb/source/suidrun/</a>. <p>See the man-page for more details. <p><br><p><a href=http://neil.brown.name/blog/20050714161653>(No comments)</a>