It's an open door for someone in group root to escalate their privileges. Anyone in group root can copy /bin/bash to /bin/ping.
robert On Sunday 27 August 2006 21:16, Bruce Dubbs wrote: > Robert Connolly wrote: > > I don't know how many of you feel comfortable with an suid-root program > > being group writtable. > > It may not be optimal, but the group is root so it really isn't a > security vulnerability. I admit that other distros like RedHat change > it to 4755. > > Perhaps this should be sent upstream. > > -- Bruce
pgpFJcwe497UF.pgp
Description: PGP signature
-- http://linuxfromscratch.org/mailman/listinfo/lfs-dev FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
