Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.2 9/18/84; site ut-sally.UUCP
Path: utzoo!watmath!clyde!bonnie!akgua!gatech!ut-sally!jsq
From: jsq@ut-sally.UUCP (John Quarterman)
Newsgroups: net.unix-wizards
Subject: Re: Re: Re: Findsuid source (Re: Security an
Message-ID: <817@ut-sally.UUCP>
Date: Sun, 3-Feb-85 19:05:32 EST
Article-I.D.: ut-sally.817
Posted: Sun Feb  3 19:05:32 1985
Date-Received: Tue, 5-Feb-85 05:20:29 EST
References: <327@lsuc.UUCP> <6200045@uokvax.UUCP> <332@enmasse.UUCP>
Reply-To: jsq@ut-sally.UUCP (John Quarterman)
Organization: U. Texas CS Dept., Austin, Texas
Lines: 10
Summary: 

Sure, if someone with root privileges is knowledgeable enough,
you'd have to fumigate your disks to get rid of them, and that
might not even work (see Thompson's Turing award paper in CACM).

What we use findsuid for is to catch clumsy crackers, and also
to find uses of non-root suid programs where groups would be better.
-- 

John Quarterman, CS Dept., University of Texas, Austin, Texas 78712 USA
jsq@ut-sally.ARPA, jsq@ut-sally.UUCP, {ihnp4,seismo,ctvax}!ut-sally!jsq