|
|
Sponsored Content
Top Forums
UNIX for Advanced & Expert Users
Setuid Program with (-rwsr-sr-x 1 root other ) UID/EUID issue
Post 302085790 by blowtorch on Sunday 20th of August 2006 12:16:48 AM
08-20-2006
|
|
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I am trying to run chown and chmod from a script owned by root. The permissions are set to 4755 so that users can execute the script as root. However, when I run the script as a user other than root, I get "Operation not permitted" for both chown and chmod. Any ideas as to why this is? (6 Replies)
Discussion started by: johnmsucpe
6 Replies
2. UNIX for Dummies Questions & Answers
Hi,
Its a shell script. rws by root, r_s by group named "other" and r_x by all others.
How can i set the uid from inside a setuid program. please let me know.
Also I dont have a c compiler on the system.
Thanks
Reply With Quote (0 Replies)
Discussion started by: 0ktalmagik
0 Replies
3. Solaris
We have a Solaris box. I noticed that whenever any non-root user logins into the box and issues the command id the output is (for example) uid=42568(sam) gid=1245(sam) euid=0(root) egid=2(bin). I have not given any privileges to anyone explicitly. When I issued ls -l in the /usr/bin directory I... (1 Reply)
Discussion started by: chrisanto_2000
1 Replies
4. AIX
Guy's
I'm trying to add some lines in sudo by useing this command visudo
# User privilege specification
root ALL=(ALL) ALL
# Uncomment to allow people in group wheel to run all commands
# %wheel ALL=(ALL) ALL
# Same thing without a password
# %wheel ALL=(ALL) NOPASSWD: ALL
#... (5 Replies)
Discussion started by: ITHelper
5 Replies
5. Solaris
Hi all,
I have a question to see if I understand the euid and uid attributes correctly for rbac (/etc/security/exec_attr):
All:
*
Audit Control:
/etc/init.d/audit euid=0, egid=3
/etc/security/bsmconv uid=0
/etc/security/bsmunconv uid=0
/usr/sbin/audit euid=0
/usr/sbin/auditconfig... (6 Replies)
Discussion started by: deadeyes
6 Replies
6. Solaris
Hi Unix Gurus .
I have requirement where in which - I would like create duplicate root equivalent account with all the privileges equal to root. Is it possible to create this duplicate account with different UID. ?
this id i would like give it to my teams - who does multiple activities using... (2 Replies)
Discussion started by: johnavery50
2 Replies
7. AIX
Hi all
I have a strange problem on one my my AIX machines. We have created a user called testroot with the same UID as root (uid=0) by changing the uid of that user in the /etc/passwd file. I know that this is a security breach but this is a test system.
Now the strange thing that happens is that... (3 Replies)
Discussion started by: abohmeed
3 Replies
8. Shell Programming and Scripting
I need to list users in /etc/passwd with root's GID or UID or /root as home directory
If we have these entries in /etc/passwd
root:x:0:0:root:/root:/bin/bash
rootgooduser1:x:100:100::/home/gooduser1:/bin/bash
baduser1:x:0:300::/home/baduser1:/bin/bash... (6 Replies)
Discussion started by: anil510
6 Replies
9. UNIX for Dummies Questions & Answers
I had a question in my test which asked where suppose user B has a program with 's' bit set. Can user A run this program and gain root privileges in any way?
I suppose not as the suid program run with privileges of owner and this program will run with B's privileges and not root. (1 Reply)
Discussion started by: syncmaster
1 Replies
10. UNIX for Beginners Questions & Answers
Just learning about the privilege escalation method provided by setuid. Correct me if I am wrong but what it does is change the uid of the current process to whatever uid I set. Right ?
So what stops me from writing my own C program and calling setuid(0) within it and gaining root privileges ?
... (2 Replies)
Discussion started by: sreyan32
2 Replies
LEARN ABOUT DEBIAN
cowbuilder
cowbuilder(8) cowdancer cowbuilder(8) NAME
cowbuilder - a pbuilder wrapper for cowdancer. SYNOPSIS
cowbuilder [commands] [options] DESCRIPTION
cowbuilder Executes the specified pbuilder operation with cowdancer COMMANDS
Most commands invoke pbuilder with the specified commands, see pbuilder manual for details. --create Create the base.cow image. The directory for base.cow should be empty, or this command will fail. --update Update the base.cow image. --build .dsc-file Build a package given a .dsc file --login Start a session within the base.cow. --execute Execute a command within the base.cow. --dumpconfig dump configuration information. OPTIONS
Most options are the same as pbuilder, except for the following which are handled specially --buildplace The place where COW operation takes place. --basepath has a very different meaning to basetgz option of pbuilder, since there is no tgz. This option specifies the directory in which the COW master data is stored, the default being /var/cache/pbuilder/base.cow --configfile [configuration file to load] Additional configuration file to read after all other configuration files have been read. --no-cowdancer-update Do not use cowdancer on cowbuilder --update. Please use this option when cowdancer is interfering with upgrade process, or cowdancer itself is being upgraded within chroot. --debian-etch-workaround Work around on Debian etch compatibility. cow-shell will search for all files in chroot, but will work. CONFIGURATION FILES
cowbuilder reads the following configuration files per default. /usr/share/pbuilder/pbuilderrc Application default, not to be changed. /etc/pbuilderrc System-wide default. ~/.pbuilderrc User default anything specified with --configfile option Additional configuration at runtime. CONFIGURATION FILE OPTIONS
The possible configuration options are as follows. Others are ignored. DISTRIBUTION=distribution BUILDRESULT=directory BUILDPLACE=directory BASEPATH=path MIRRORSITE=http://mirror NO_COWDANCER_UPDATE=1 See --no-cowdancer-update DEBIAN_ETCH_WORKAROUND=1 See --debian-etch-workaround EXAMPLES
cowbuilder --create Create a base.cow image. # cowbuilder --create --hookdir /usr/share/doc/pbuilder/examples/workaround/ --distribution etch --debootstrap debootstrap --basepath /var/cache/pbuilder/base-test.cow bash: /root/.pbuilderrc: No such file or directory W: /home/dancer/.pbuilderrc does not exist -> Running in no-targz mode Distribution is etch. Building the build environment -> running debootstrap /usr/sbin/debootstrap I: Retrieving Release . . cowbuilder --update Update the base.cow image. # cowbuilder --update bash: /root/.pbuilderrc: No such file or directory -> Copying COW directory -> Invoking pbuilder W: /home/dancer/.pbuilderrc does not exist -> Running in no-targz mode -> copying local configuration -> mounting /proc filesystem -> mounting /dev/pts filesystem -> policy-rc.d already exists Refreshing the base.tgz -> upgrading packages . . cowbuilder --build test_0.1.dsc Build the package specified in dsc file, with the base.cow image. pdebuild --pbuilder cowbuilder Run cowbuilder --build against the current directory. The current directory should be an extracted Debian source package directory. Edit /etc/pbuilderrc to have PDEBUILD_PBUILDER=cowbuilder to make this the default behavior for pdebuild. cowbuilder --login --bindmounts /home/dancer Start a cow-shell session inside base.cow, with /home/dancer being bind-mounted to within chroot. Note that cowbuilder will not cow-protect what is inside /home/ # cowbuilder --login --bindmount ${HOME} bash: /root/.pbuilderrc: No such file or directory -> Copying COW directory -> Invoking pbuilder W: /home/dancer/.pbuilderrc does not exist -> Running in no-targz mode -> copying local configuration -> mounting /proc filesystem -> mounting /dev/pts filesystem -> Mounting /home/dancer -> policy-rc.d already exists -> entering the shell # cowbuilder --create --distribution sid --basepath /var/cache/pbuilder/base-test.cow Create a base.cow image with the path /var/cache/pbuilder/base-test.cow and distribution sid. AUTHOR
Junichi Uekawa (dancer@debian.org) SEE ALSO
/usr/share/doc/pbuilder/pbuilder-doc.html, pbuilder (8), pdebuild (1) cowdancer 2007 Jun 17 cowbuilder(8)