Path: utzoo!utgpu!water!watmath!clyde!att!ucbvax!unisoft!mtxinu!ed
From: ed@mtxinu.UUCP (Ed Gould)
Newsgroups: comp.unix.wizards
Subject: Re: Secure setuid shell scripts
Message-ID: <674@mtxinu.UUCP>
Date: 27 Oct 88 00:30:53 GMT
References: <14066@iuvax.cs.indiana.edu> <4409@bsu-cs.UUCP> <14069@mimsy.UUCP> <546@sp7040.UUCP>
Reply-To: ed@mtxinu.UUCP (Ed Gould)
Organization: mt Xinu, Berkeley
Lines: 11

>just one question.  Is this problem a security hole for only BSD systems,
>or does it exist on other SVID type systems or others?

Set-uid scripts are a security hole on any system, if they exist at all
which is not typical on SysV.

-- 
Ed Gould                    mt Xinu, 2560 Ninth St., Berkeley, CA  94710  USA
{ucbvax,uunet}!mtxinu!ed    +1 415 644 0146

"I'll fight them as a woman, not a lady.  I'll fight them as an engineer."