Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: suid files???
Special Forums Cybersecurity suid files??? Post 8513 by Perderabo on Friday 12th of October 2001 01:51:56 PM
Old 10-12-2001
What's wrong with find?

find / -perm -4000 -o -perm -2000 | xargs ls -l
 

9 More Discussions You Might Find Interesting

1. Programming

SUID bit???

Hi all I'm getting file info through stat( char *filename, struct stat *buf) Taking all the file attributes to buf->st_mode, How can i check the suid bit in there, if suid bit mask is 0004000?? Thank you all (1 Reply)
Discussion started by: solvman
1 Replies

2. UNIX for Dummies Questions & Answers

what is suid ?

what is SUID ? can someone explain or point me to a link ? thanks simon2000 (2 Replies)
Discussion started by: simon2000
2 Replies

3. UNIX for Advanced & Expert Users

is SUID disabled for shell

Hi, I have two file in my directory. "catter" file contains "cat ./file". And "file" contails "Hi ashish". I have SUID bit set for catter file. But when a different user in my group runs file catter, shell displays "Permission denied" message. I just want to know can use of suid bit be... (3 Replies)
Discussion started by: shriashishpatil
3 Replies

4. UNIX for Advanced & Expert Users

SUID not working

Hi Senario: I have previleges to edit a file F but User B does not have sufficient privs to edit it. In order for B to edit it I tried an indirect way. I created a script to edit F and SUID this script so that B can execute it with the privs of me. But this is not working . can some one help... (3 Replies)
Discussion started by: Pankaj Mishra
3 Replies

5. UNIX for Dummies Questions & Answers

find files with SUID bit turned on

I'm writing a script that will search for files with the SUID bit turned on, and put the list in a file called id.txt i read that files with the SUID bit turned on are chmod'd to 4000, so i tried: find / -perm 4000 > id.txt also various others such as -perm 4777 etc etc but it found nothing... (1 Reply)
Discussion started by: SoVi3t
1 Replies

6. Cybersecurity

the SUID of lpq

Hello My system is Debian-503-amd64. After I installed the "lpr" package, I found that some files with SUID bit come from this package. As: ls -l /usr/bin/lp* .... -rwsr-sr-x 1 root lp 31800 2008-05-20 /usr/bin/lpq -rwsr-sr-x 1 root lp 28504 2008-05-20 /usr/bin/lpr -rwsr-sr-x 1... (1 Reply)
Discussion started by: ZR_Lang
1 Replies

7. UNIX for Advanced & Expert Users

How do suid permissions work?

Hello all, I have a file system with permissions: drwxrwsr-x 49 pwcenter pwce1 4096 01 May 17:00 InFiles Can someone explain the real significance of the 's' setting for group users please? Cheers (3 Replies)
Discussion started by: Grueben
3 Replies

8. AIX

Why /bin/su permission with SUID?

Dear all experts in this forum, I have faced a audit issue as auditor told that we should not have SUID on /bin/su. As I have checked using Google, I found most of the site only telling that /bin/su should have the permission bit as -rwsr-xr-x but never explain why /bin/su need this permission... (4 Replies)
Discussion started by: kwliew999
4 Replies

9. UNIX for Dummies Questions & Answers

Difference between inbuilt suid programs and user defined root suid programs under bash shell?

Hey guys, Suppose i run passwd via bash shell. It is a suid program, which temporarily runs as root(owner) and modifies the user entries. However, when i write a C file and give 4755 permission and root ownership to the 'a.out' file , it doesn't run as root in bash shell. I verified this by... (2 Replies)
Discussion started by: syncmaster
2 Replies

LEARN ABOUT DEBIAN

sxid.conf

SXID.CONF(5)							File Formats Manual						      SXID.CONF(5)

NAME

       sxid.conf - configuration settings for sxid

DESCRIPTION

       This  is  the  configuration file used by sxid to define it's parameters for execution. By default it is /etc/sxid.conf but can be anything
       using the --config command line option for sxid.  Options in this file are in the form of OPTION = "VALUE" .  Note that the VALUE  must	be
       contained in double quotes.

OPTIONS

       ALWAYS_NOTIFY
	      If sxid does not find any changes it will not send an email unless you specify "yes" here.

       ALWAYS_ROTATE
	      Usually  sxid  will  only  rotate  the log files when there is a change from the last run. This is usually best, since all logs will
	      record a change rather than just a run of the program. If you want to rotate the logs every time sxid is run, regardless of changes,
	      specify "yes" here.

       EMAIL  Where to send the email containing the output of changes every time sxid is run. Example:

	      EMAIL = "Great Admin <root@host.com>"

       ENFORCE
	      Normally	sxid  only  flags  items  which are suid or sgid and are in a FORBIDDEN directory. With this option set to "yes" sxid will
	      remove the s[ug]id bit(s) on any files or directories it finds in forbidden directories and report any changes in  the  email.  Note
	      that directories listed in FORBIDDEN are searched regardless of whether or not they are listed in SEARCH.  However, EXCLUDED options
	      still apply to directories that fall under them.

       EXCLUDE
	      A space seperated list of directories to exclude from the search. Note that if a SEARCH path falls under an  EXCLUDE  path  that	it
	      will still be searched. This is useful for excluding whole directories and only specifying one. Example:

	      SEARCH  = "/usr /usr/src/linux"

	      EXCLUDE = "/usr/src"

       EXTRA_LIST
	      File  that contains a list of (each on it's own line)  of other files that sxid should monitor. This is useful for files that aren't
	      +s, but relate to system integrity (tcpd, inetd, apache...). Example:

	      EXTRA_LIST = "/etc/sxid.list"

       FORBIDDEN
	      A space seperated list of directories that are not supposed to contain any suid or sgid items. Items which are suid or sgid in these
	      directories are flagged in the email seperately from the other listings whether there are other changes or not. Example:

	      FORBIDDEN = "/tmp /home"

       IGNORE_DIRS
	      Ignore entries for directories in these paths. This means that only files will be recorded. You can effectively ignore all directory
	      entries by setting this to "/".

       KEEP_LOGS
	      This is a numerical value for how many log files to keep when rotating.

       LISTALL
	      Forces a list of all entries to be included in th output. Implies ALWAYS_NOTIFY.

       LOG_FILE
	      The full path of where to store the log files. These will be rotated, each rotated log being suffixed with a digit. The  directories
	      must  already exist.  This is usually /var/log/sxid.log. Rotated logs would look like /var/log/sxid.log.n where 'n' is the number in
	      the rotation. The current log has no suffix.

       AIL_PROG
	      Mail program. This changes the default compiled in mailer for reports. You only need this if you	have  changed  it's  location  and
	      don't want to recompile sxid.

       SEARCH A space seperated list of directories to search. Sxid will use these as a starting point for it's searches. Example:

	      SEARCH = "/usr /bin /lib"

AUTHOR

       Ben Collins <bcollins@debian.org>

REPORTING BUGS

       Report bugs to current maintainer Timur Birsh <taem@linukz.org>.

SEE ALSO

       sxid(1)

sXid 4.0.5							   January 2002 						      SXID.CONF(5)
All times are GMT -4. The time now is 08:50 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy