Re: unsafe file permissions on /usr/bin/login

To: bouyer%antioche.eu.org@localhost
Subject: Re: unsafe file permissions on /usr/bin/login
From: JP <rlntlss83%gmail.com@localhost>
Date: Wed, 28 Nov 2018 12:36:38 -0500

and why does a user need to use login from their command line?

On Wed, Nov 28, 2018 at 12:34 PM Manuel Bouyer <bouyer%antioche.eu.org@localhost> wrote:

On Wed, Nov 28, 2018 at 12:27:39PM -0500, JP wrote:
> OK, well I have root with physical access to the box.

Yes, exactly the same way to can log in as root from the login prompt,
as getty calls /usr/bin/login ...

> What is the reason for it being suid?

So that users can actually use it, I guess ...

--
Manuel Bouyer <bouyer%antioche.eu.org@localhost>
NetBSD: 26 ans d'experience feront toujours la difference
--

Follow-Ups:
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer

References:
- unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer
- Re: unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer

Prev by Date: Re: unsafe file permissions on /usr/bin/login
Next by Date: Re: unsafe file permissions on /usr/bin/login
Previous by Thread: Re: unsafe file permissions on /usr/bin/login
Next by Thread: Re: unsafe file permissions on /usr/bin/login
Indexes:

Home | Main Index | Thread Index | Old Index