Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!yale!mintaka!bloom-beacon!eru!luth!sunic!mcsun!unido!leuze!fbraab
From: fbraab@leuze.UUCP (Fritz B. Raab)
Newsgroups: comp.protocols.nfs
Subject: Re: PC/NFS 3.0.1 Bug with setuid/setgid
Message-ID: <1474@leuze.UUCP>
Date: 20 Aug 90 06:24:44 GMT
References: <1471@leuze-owen.de> <2396@east.East.Sun.COM> <1473@leuze.UUCP> <90229.101230TOMIII@MTUS5.BITNET>
Organization: Leuze electronic D-7311 OWEN-Teck., W-Germany
Lines: 28

TOMIII@MTUS5.BITNET (Thomas Dwyer III) writes:

>>>#PC/NFS does not recognize that a parent directory has s-bits. Thus, a
>>>#new made directory (with md in DOS) has wrong group id. To avoid this,
>>>#I use 'rsh host mkdir path' at the moment, but thats not nice...

>>Unfortunately it's not really patchable. It will be fixed in the next
>>release, which may or may not be a consolation...

>What about a chgrp command and how about setuid programs actually running
>under the owner's name? :-)

Well, chgrp is NOT a PC-NFS command and chmod 2775 does NOT work, under UNIX
everything works correct, that's not the problem...
The problem is, that PC-NFS users must not get a login shell (for security
reasons, because their passwds are simple and the machine is connected out-
side...)


 (-:   Fritz B. Raab                 |   email: fbraab@leuze-owen.de        :-)
 (-:   Leuze electronic, Abt. TDV    |   old:   ..uunet!unido!leuze!fbraab  :-)
 (-:   In der Braike 1               |          fbraab@leuze.uucp           :-)
 (-:   D7311 Owen / Teck W.Germany   |   voice: +49 7021 573185 fax: 573200 :-)
-- 
 (-:   Fritz B. Raab                 |   email: fbraab@leuze-owen.de        :-)
 (-:   Leuze electronic, Abt. TDV    |   old:   ..uunet!unido!leuze!fbraab  :-)
 (-:   In der Braike 1               |          fbraab@leuze.uucp           :-)
 (-:   D7311 Owen / Teck W.Germany   |   voice: +49 7021 573185 fax: 573200 :-)