[3152] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

why suid mount (was Re: Possible bufferoverflow condition in lpr,

daemon@ATHENA.MIT.EDU (Bryan Reece)
Tue Aug 13 20:30:25 1996

Date: 	Tue, 13 Aug 1996 14:21:08 -0400
Reply-To: Bugtraq List <BUGTRAQ@netspace.org>
From: Bryan Reece <reece@taz.nceye.net>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To:  <199608131325.JAA21033@denali.contract.kent.edu> (message from
              Mike Acar on Tue, 13 Aug 1996 09:25:03 -0400)

   Date:        Tue, 13 Aug 1996 09:25:03 -0400
   From: Mike Acar <mike@contract.kent.edu>

   Speaking of suid binaries, *why* are /bin/mount and /bin/umount suid?
   These shouldn't be run by anybody but the superuser.

They're suid root to allow users to mount/umount removable media.
There's a `user' option in fstab that allows normal users to
mount/umount the specified filesystem; this is normally used along
with nosuid,nodev in an attempt to reduce security risks.

   --
   DZ-015 (Mike Acar)         Information Retrieval        Ministry of Information


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[3152] in bugtraq

why suid mount (was Re: Possible bufferoverflow condition in lpr,

daemon@ATHENA.MIT.EDU (Bryan Reece)Tue Aug 13 20:30:25 1996

daemon@ATHENA.MIT.EDU (Bryan Reece)
Tue Aug 13 20:30:25 1996