Subject: Re: 'shutdown' setuid?
To: Steve Bellovin <firstname.lastname@example.org>
From: Jason R Thorpe <email@example.com>
Date: 12/03/2002 20:45:26
On Tue, Dec 03, 2002 at 11:05:08PM -0500, Steve Bellovin wrote:
> Why is /sbin/shutdown setuid root on 1.6 and -current? (I haven't checked
> any other versions.) The code ensures that it's running as root, which
> is reasonable -- but if it's setuid, it always will be.
So that people in group "operator" can run it and expect it to work.
-- Jason R. Thorpe <firstname.lastname@example.org>