Gentoo Forums :: View topic - security question about suid program in /usr/libexec

security question about suid program in /usr/libexec

View unanswered posts
View posts from last 24 hours

Gentoo Forums Forum Index

Networking & Security

View previous topic :: View next topic

Author

Message

fpemud
Tux's lil' helper

Tux's lil' helper

Joined: 15 Feb 2012
Posts: 82

Posted: Tue Jan 22, 2013 1:32 pm Post subject: security question about suid program in /usr/libexec

Reply with quote

I found there're some suid programs in /usr/libexec:

Code:

[fpemud@fpemud-workstation ~]$ find /usr/libexec -perm +4000
/usr/libexec/pulse/proximity-helper
/usr/libexec/dbus-daemon-launch-helper
/usr/libexec/spice-client-glib-usb-acl-helper

After some learning I know they are assistant program and should not be called by user directly.
But how does linux prevent a malicious user do that?
Is there some check in these program?

Send private message

Ant P.
Veteran
Veteran

Veteran

Joined: 18 Apr 2009
Posts: 1920
Location: UK

Posted: Tue Jan 22, 2013 5:08 pm Post subject:

You could read the source to find out, or just look at their actual permissions and see that they're limited to being run by specific user groups.

Send private message

Display posts from previous:

	Gentoo Forums Forum Index Networking & Security	All times are GMT
Page 1 of 1

Jump to:

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Copyright 2001-2013 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p9 © 2001, 2002 phpBB Group