Path: utzoo!attcan!uunet!wuarchive!zaphod.mps.ohio-state.edu!mips!daver!tscs!tct!chip
From: chip@tct.uucp (Chip Salzenberg)
Newsgroups: comp.unix.sysv386
Subject: Re: setluid(0) in SCO ?
Keywords: Defeat SCO C2 Security
Message-ID: <26FC13F7.1A4F@tct.uucp>
Date: 23 Sep 90 01:46:30 GMT
References: <1990Sep20.163355.7147@robobar.co.uk>
Organization: Teltronics/TCT, Sarasota, FL
Lines: 9

According to ronald@robobar.co.uk (Ronald S H Khoo):
>Can anyone think of any breaches of unix levels of security if one
>were to simply leave the login uid as zero ?  ... then we
>would effectively have just normal Unix behaviour.

Sorry.  There are many system utilities that still care about the
subsystem databases in /etc/auth/subsystems.
-- 
Chip Salzenberg at Teltronics/TCT     <chip@tct.uucp>, <uunet!pdn!tct!chip>