Subject: Re: 'shutdown' setuid?
To: Simon Burge <firstname.lastname@example.org>
From: Andrew Brown <email@example.com>
Date: 12/04/2002 02:06:28
>> Why is /sbin/shutdown setuid root on 1.6 and -current? (I haven't checked
>> any other versions.) The code ensures that it's running as root, which
>> is reasonable -- but if it's setuid, it always will be.
>> (I agree that on single-user machines, it's a reasonable thing to do.
>> But the owner can do that on a per-machine basis.)
>It's also only executable by group operator:
> -r-sr-xr-- 1 root operator 270144 Aug 4 01:14 /sbin/shutdown*
>so operator folk can reboot the computer.
always was, afaict. the only thing that change recently (in '97) was
read permission being added for "other". i have no idea why.
|-----< "CODE WARRIOR" >-----|
firstname.lastname@example.org * "ah! i see you have the internet
email@example.com (Andrew Brown) that goes *ping*!"
firstname.lastname@example.org * "information is power -- share the wealth."