Path: utzoo!utgpu!water!watmath!clyde!att!osu-cis!tut.cis.ohio-state.edu!mailrus!iuvax!bsu-cs!dhesi
From: dhesi@bsu-cs.UUCP (Rahul Dhesi)
Newsgroups: comp.unix.wizards
Subject: Re: Secure setuid shell scripts
Message-ID: <4409@bsu-cs.UUCP>
Date: 19 Oct 88 21:34:45 GMT
References: <14066@iuvax.cs.indiana.edu>
Reply-To: dhesi@bsu-cs.UUCP (Rahul Dhesi)
Organization: CS Dept, Ball St U, Muncie, Indiana
Lines: 6

If a 4.3BSD system has not been patched to disallow set-user-id shell
scripts, but root uses no set-user-id scripts, does a security hole
still exist that will allow an unprivileged user to obtain root
privileges?
-- 
Rahul Dhesi         UUCP:  <backbones>!{iuvax,pur-ee}!bsu-cs!dhesi