Path: utzoo!news-server.csri.toronto.edu!rpi!usc!sdd.hp.com!spool.mu.edu!uwm.edu!linac,att!emory!wuarchive!udel!mmdf
From: u27602@uy.ncsa.uiuc.edu (Jeffrey C. Ollie)
Newsgroups: comp.os.minix
Subject: MINIX Security
Message-ID: <47976@nigel.ee.udel.edu>
Date: 18 Mar 91 16:25:33 GMT
Sender: mmdf@ee.udel.edu
Lines: 18

<AJN106@PSUVM.PSU.EDU> writes:

>HOW CAN I BREAK SECURITY IN MINIX 1.5?  IT IS FOR A PROJECT I AM DOING AS AN
>INDEPENDENT STUDY.  I NEED A WAY TO ACCESS SUPER-USER (ROOT USER) PRIVILEGES
>SO A NORMAL USER CAN USE IT.  SEND E-MAIL RESPONSES TO AJN106 PSUVM.  THANKS.

The book _Unix System Anministration_ by Evi Nemeth contains a short
program called SUDO (SuperUser DO) that allows normal users to perform
operations that normally only the root would be able to do.  Basically,
it is a program that runs setuid root.  SUDO checks a file set up by
the super-user to see if the su has given the user that runs SUDO permission
to run SUDO, and if the su has given that user permission to execute the
command given to su.  The program was written for BSD Unix, but there are
no BSD-dependent calls (as far as I know) so a port should be a type-in-and-
run job. ;-)

Jeff Ollie
I-Net: u27602@uy.ncsa.uiuc.edu