Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Deleting root files from another user
Top Forums Shell Programming and Scripting Deleting root files from another user Post 49890 by Perderabo on Tuesday 13th of April 2004 07:30:20 AM
Old 04-13-2004
What you are trying to do is very dangerous from a security standpoint. shtest is obviously a shell script of some kind. That is bad enough by itself, but you actually have shtest world-writable.

Rather than executing shtest, your c program should do all of the work itself. Deleting some files is not hard.

But the reason this is failing is that modern shells try to prohibit what you are trying. If they find themselves running a script and notice that the effective uid does not match the real uid, they reset the effective uid.

You can defeat that by adding a single line of code:
setuid(0);
to your c program prior to invoking system(). Mark my words though. Youll probably regret doing so later.
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Other than root user .Normal user is unable to create files

Hi all, I am using Sun Solaris 9 .In this system normal users unable to create files from the command line.I added these users in bin,adm and even root group i found them unable to create a file. (1 Reply)
Discussion started by: mallesh
1 Replies

2. Shell Programming and Scripting

Script for Deleting Core files on root filesystem

ok i am setting up a script to run daily using crontab. This script will search the root filesystem and delete any and all core files. I have set up this script The only problem i get with this script is it searches for directories and attempts to delete them. Since i have probably... (7 Replies)
Discussion started by: rgfirefly24
7 Replies

3. UNIX for Dummies Questions & Answers

deleting another user's files

hi, I have two users, let us call them A and B. I do as User A touch tmpfile chmod 700 tmpfile Now as User B I do rm tmpfile - and it allows me to do it (after prompting me)...why? If I had done chmod 777 tmpfile, then sure User B should be able to delete it, but I did chmod 700... (3 Replies)
Discussion started by: JamesByars
3 Replies

4. UNIX for Dummies Questions & Answers

How to allow access to some commands having root privleges to be run bu non root user

hi i am new to unix and i have abig task. i have to \run particular commands having root privileges from a non root user. i know sudo is one of the way but i need sum other approach kindly help Thanks (5 Replies)
Discussion started by: suryashikha
5 Replies

5. AIX

find command to list all the 777 files and directories owned by root user

Hi I'm logged in to an AIX box now and we need to do an audit on this box. cbssapr01:# pwd / Which command will show all the files and directories owned by root user with permissions as 777 ? (8 Replies)
Discussion started by: newtoaixos
8 Replies

6. UNIX for Dummies Questions & Answers

Sudo to delegate permission from non-root user to another non-root user

I've been through many threads before i decide to create a separate thread. I can't really find the solution to my (simple) problem. Here's what I'm trying to achieve: As "canar" user I want to run a command, let's say "/opt/ocaml/bin/ocaml" as "duck" user. The only to achieve this is to... (1 Reply)
Discussion started by: canar
1 Replies

7. UNIX for Advanced & Expert Users

Root and non-root user not able to delete the file

Hi!! one strange problem occurred with my RHEL 5 box. i'm having logs folder with ownership of non-root user. Created some files with root user under logs folder. here is the scene: -rw-r----- 1 root root 1048227 Feb 28 12:34 SystemOut_13.02.28_12.34.10.log -rw-r----- 1 root root ... (6 Replies)
Discussion started by: sukhdip
6 Replies

8. Shell Programming and Scripting

How to give root access to non root user?

Currently in my system Red Hat is installed. And Many user connect to my machine via SSH Techia Terminal. I want to give some users a root level access. Can anyone please help me how to make it possible. I too searched on the Google but didn't find the correct way Regards ADI (4 Replies)
Discussion started by: adisky123
4 Replies

9. UNIX for Dummies Questions & Answers

Switching from root to normal user takes me to user's home dir

Whenever i switch from root to another user, by doing su - user, it takes me to home directory of user. This is very annoying as i want to be in same dir to run different commands as root sometimes and sometimes as normal user. How to fix this? (1 Reply)
Discussion started by: syncmaster
1 Replies

10. UNIX for Dummies Questions & Answers

New user to own files made by root?

Hi, when I installed debian 8, all files are created and owned by root, when I add new user, for example marco, he can't create directory or change files created by root. I tried with ftp, permission denied. so, I am interested how to grant to user marco ownership of all files in the system so... (5 Replies)
Discussion started by: alanford
5 Replies

LEARN ABOUT REDHAT

setuid

SETUID(2)						     Linux Programmer's Manual							 SETUID(2)

NAME

       setuid - set user identity

SYNOPSIS

       #include <sys/types.h>
       #include <unistd.h>

       int setuid(uid_t uid);

DESCRIPTION

       setuid  sets the effective user ID of the current process.  If the effective userid of the caller is root, the real and saved user ID's are
       also set.

       Under Linux, setuid is implemented like the POSIX version with the _POSIX_SAVED_IDS feature.  This allows a setuid (other than  root)  pro-
       gram to drop all of its user privileges, do some un-privileged work, and then re-engage the original effective user ID in a secure manner.

       If  the	user is root or the program is setuid root, special care must be taken. The setuid function checks the effective uid of the caller
       and if it is the superuser, all process related user ID's are set to uid.  After this has occurred, it is impossible  for  the  program	to
       regain root privileges.

       Thus, a setuid-root program wishing to temporarily drop root privileges, assume the identity of a non-root user, and then regain root priv-
       ileges afterwards cannot use setuid.  You can accomplish this with the (non-POSIX, BSD) call seteuid.

RETURN VALUE

       On success, zero is returned.  On error, -1 is returned, and errno is set appropriately.

ERRORS

       EPERM  The user is not the super-user, and uid does not match the real or saved user ID of the calling process.

CONFORMING TO

       SVr4, SVID, POSIX.1.  Not quite compatible with the 4.4BSD call, which sets all of the real, saved, and effective user IDs.  SVr4 documents
       an additional EINVAL error condition.

LINUX-SPECIFIC REMARKS
       Linux  has the concept of filesystem user ID, normally equal to the effective user ID.  The setuid call also sets the filesystem user ID of
       the current process.  See setfsuid(2).

       If uid is different from the old effective uid, the process will be forbidden from leaving core dumps.

SEE ALSO

       getuid(2), setreuid(2), seteuid(2), setfsuid(2)

Linux 1.1.36							    1994-07-29								 SETUID(2)
All times are GMT -4. The time now is 09:49 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy