Add new comment

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Think about security implications
Submitted by tmib (registered user) on Sun, 2007-03-04 07:10.

Setting the SUID/SGID bit for a program to the 'root' user should actually be discouraged. If the program is badly written and can be manipulated via (malicious) input, it could allow a normal user to gain root privileges or access to files which that user should not be able to access.
When setting the sticky bit to a normal userid, it could allow other users access to all the other user's files, which may not really be what you want.
So please think about the security implications before randomly using this feature.

If you are facing a permissions dilemma for multiple users/groups, please consider looking into MAC (Mandatory Access Control).

Please do not use the comment function to ask for help! If you need help, please use our forum.
Comments will be published after administrator approval.

Reply

*
*
The content of this field is kept private and will not be shown publicly.


*

  • Images can be added to this post.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <img> <div>
  • Lines and paragraphs break automatically.
More information about formatting options