Path: utzoo!utgpu!watmath!clyde!att!osu-cis!tut.cis.ohio-state.edu!mailrus!ames!pasteur!ucbvax!decwrl!sun!pitstop!sundc!seismo!uunet!munnari!otc!metro!basser!mqcomp!martin
From: martin@mqcomp.oz (Martin Foord)
Newsgroups: comp.unix.wizards
Subject: Secure setuid shell scripts
Message-ID: <567@mqcomp.oz>
Date: 10 Nov 88 00:44:57 GMT
Organization: Computing Discipline, Macquarie Uni, NSW, 2109, Australia
Lines: 15


I have only started to read this section in the last few days but have read
much on the subject of set[ug]id shell scripts. Probably due to my
ignorance I haven't been able to pick up the main threads of the
problems that occur with them. Could somone elighten me as to the
security hole with set[ug]id scripts and `#!' and the problem with
symbolic links.
				Many Thanks in Advance,
						Martin Foord.


Martin Foord              ACSnet,Ean,CSnet: martin@mqcomp.mq.oz
Computing Discipline      Arpa:  martin%mqcomp.mq.oz@UUNET.UU.NET
Macquarie University 2109 Janet: martin%mqcomp.mq.oz@UK.AC.UKC
Australia                 UUCP:  {uunet,mcvax}!munnari!mqcomp.mq.oz!martin