Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Difference between inbuilt suid programs and user defined root suid programs under bash shell?
Top Forums UNIX for Dummies Questions & Answers Difference between inbuilt suid programs and user defined root suid programs under bash shell? Post 302955671 by disedorgue on Sunday 20th of September 2015 12:55:37 PM
Old 09-20-2015
Hi,
What does "a.out" doing ?
It try to launch bash in setuid root ?
You shall know that bash not work by default in setuid root, you must use "-p" option.

In man:
Quote:
If the shell is started with the effective user (group) id not equal to the real user (group) id, and the -p option is not
supplied, no startup files are read, shell functions are not inherited from the environment, the SHELLOPTS, BASHOPTS, CDPATH,
and GLOBIGNORE variables, if they appear in the environment, are ignored, and the effective user id is set to the real user
id. If the -p option is supplied at invocation, the startup behavior is the same, but the effective user id is not reset.
Regards.
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

what is suid ?

what is SUID ? can someone explain or point me to a link ? thanks simon2000 (2 Replies)
Discussion started by: simon2000
2 Replies

2. UNIX for Advanced & Expert Users

is SUID disabled for shell

Hi, I have two file in my directory. "catter" file contains "cat ./file". And "file" contails "Hi ashish". I have SUID bit set for catter file. But when a different user in my group runs file catter, shell displays "Permission denied" message. I just want to know can use of suid bit be... (3 Replies)
Discussion started by: shriashishpatil
3 Replies

3. UNIX for Advanced & Expert Users

SUID not working

Hi Senario: I have previleges to edit a file F but User B does not have sufficient privs to edit it. In order for B to edit it I tried an indirect way. I created a script to edit F and SUID this script so that B can execute it with the privs of me. But this is not working . can some one help... (3 Replies)
Discussion started by: Pankaj Mishra
3 Replies

4. UNIX for Advanced & Expert Users

running X-11 programs as root

Hello, I would like to run gedit as root while logged into my regular user account. When I try to launch gedit from the command line as super user, I get this message: Gtk-WARNING **: cannot open display: Any suggestions or word arounds? It would make my life a lot simpler to edit files... (8 Replies)
Discussion started by: Allasso
8 Replies

5. UNIX for Dummies Questions & Answers

Are programs like sys_open( ) ,sys_read( ) et al examples of system level programs ?

Are the programs written on schedulers ,thread library , process management, memory management, et al called systems programs ? How are they different from the programs that implement functions like open() , printf() , scanf() , read() .. they have a prefix sys_open, sys_close, sys_read etc , right... (1 Reply)
Discussion started by: vishwamitra
1 Replies

6. UNIX for Advanced & Expert Users

check user installed programs

How do check the programs that the actual user of the computer installed. I do not care at all about the default programs that came with your distro of Linux, I only want the user installed programs. (1 Reply)
Discussion started by: cokedude
1 Replies

7. Cybersecurity

the SUID of lpq

Hello My system is Debian-503-amd64. After I installed the "lpr" package, I found that some files with SUID bit come from this package. As: ls -l /usr/bin/lp* .... -rwsr-sr-x 1 root lp 31800 2008-05-20 /usr/bin/lpq -rwsr-sr-x 1 root lp 28504 2008-05-20 /usr/bin/lpr -rwsr-sr-x 1... (1 Reply)
Discussion started by: ZR_Lang
1 Replies

8. Debian

Create restricted user for programs

want to create a user account for each of the key programs installed on my debian server. For example, for the following programs: Tomcat Nginx Supervisor PostgreSQL This seems to be recommended based on my reading online. However, I want to restrict these user accounts as much as possible,... (3 Replies)
Discussion started by: Spadez
3 Replies

9. Shell Programming and Scripting

SUID works for shell scripts??

SUID works for shell scripts (bash)?? I'm user user1 need to execute a shell script (script.sh) which is owned by user2.-rwsrwxrwx 1 user2 aduser 3518 Aug 21 05:33 script.shOnly user2 has write privileges to write/copy a file in directory /dir1/subdir. Hence SUID bit permissions are set to... (8 Replies)
Discussion started by: MSK_1990
8 Replies

10. UNIX for Dummies Questions & Answers

Can you gain root privileges if the suid program does not belong to root?

I had a question in my test which asked where suppose user B has a program with 's' bit set. Can user A run this program and gain root privileges in any way? I suppose not as the suid program run with privileges of owner and this program will run with B's privileges and not root. (1 Reply)
Discussion started by: syncmaster
1 Replies

LEARN ABOUT MOJAVE

setegid

SETUID(2)						      BSD System Calls Manual							 SETUID(2)

NAME

     setegid, seteuid, setgid, setuid -- set user and group ID

SYNOPSIS

     #include <unistd.h>

     int
     setegid(gid_t egid);

     int
     seteuid(uid_t euid);

     int
     setgid(gid_t gid);

     int
     setuid(uid_t uid);

DESCRIPTION

     The setuid() function sets the real and effective user IDs and the saved set-user-ID of the current process to the specified value.  The
     setuid() function is permitted if the effective user ID is that of the super user, or if the specified user ID is the same as the effective
     user ID.  If not, but the specified user ID is the same as the real user ID, setuid() will set the effective user ID to the real user ID.

     The setgid() function sets the real and effective group IDs and the saved set-group-ID of the current process to the specified value.  The
     setgid() function is permitted if the effective user ID is that of the super user, or if the specified group ID is the same as the effective
     group ID.	If not, but the specified group ID is the same as the real group ID, setgid() will set the effective group ID to the real group
     ID.

     The seteuid() function (setegid()) sets the effective user ID (group ID) of the current process.  The effective user ID may be set to the
     value of the real user ID or the saved set-user-ID (see intro(2) and execve(2)); in this way, the effective user ID of a set-user-ID exe-
     cutable may be toggled by switching to the real user ID, then re-enabled by reverting to the set-user-ID value.  Similarly, the effective
     group ID may be set to the value of the real group ID or the saved set-user-ID.

RETURN VALUES

     Upon success, these functions return 0; otherwise -1 is returned.

     If the user is not the super user, or the uid specified is not the real, effective ID, or saved ID, these functions return -1.

ERRORS

     The setegid(), seteuid(), setgid(), and setuid() system calls will fail if:

     [EINVAL]		The value of the {group,user} ID argument is invalid and is not supported by the implementation.

     [EPERM]		The process does not have appropriate privileges and the ID argument does not match the real ID or the saved
			set-{group,user}-ID.

LEGACY SYNOPSIS

     #include <sys/types.h>
     #include <unistd.h>

     The include file <sys/types.h> is necessary for all functions.

SEE ALSO

     getgid(2), getuid(2), compat(5)

STANDARDS

     The setuid() and setgid() functions are compliant with the ISO/IEC 9945-1:1990 (``POSIX.1'') specification with _POSIX_SAVED_IDS defined,
     with the extensions allowed in section B.4.2.2.  The seteuid() and setegid() functions are extensions based on the POSIX concept of
     _POSIX_SAVED_IDS, and have been proposed for a future revision of the standard.

4.2 Berkeley Distribution					   June 4, 1993 					 4.2 Berkeley Distribution
All times are GMT -4. The time now is 11:23 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy