Hosting Provided By

Re: setuid binary in ktsuss

From: Russ Allbery <rra(at)debian.org>
Date: Sat Feb 09 2008 - 17:13:30 EST

Yves-Alexis Perez <corsac@debian.org> writes:

> I'm about to upload ktsuss to debian, wich is a graphical wrapper around
> su (much like gksu but without any gnome dependency). One point puzzles
> me, the ktsuss binary is setuid root (so it can read the root password).
> gksu doesn't do this (it calls su, I guess).

I would expect it to use PAM, which uses the setuid unix_chkpwd binary. If it's not using PAM, that's probably a bug.

-- 
Russ Allbery (
rra(at)debian.org)               <
http://www.eyrie.org/~eagle/>


-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Received on Sat Feb 9 17:14:28 2008

This message: [ Message body ]
Next message: Hubert Chathi: "Re: setuid binary in ktsuss"
Previous message: Yves-Alexis Perez: "setuid binary in ktsuss"
In reply to: Yves-Alexis Perez: "setuid binary in ktsuss"
Next in thread: Hubert Chathi: "Re: setuid binary in ktsuss"
Reply: Hubert Chathi: "Re: setuid binary in ktsuss"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Mar 19 2008 - 06:55:38 EDT