Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
security question about suid program in /usr/libexec
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
fpemud
Guru
Guru


Joined: 15 Feb 2012
Posts: 349

PostPosted: Tue Jan 22, 2013 1:32 pm    Post subject: security question about suid program in /usr/libexec Reply with quote

I found there're some suid programs in /usr/libexec:
Code:
[fpemud@fpemud-workstation ~]$ find /usr/libexec -perm +4000
/usr/libexec/pulse/proximity-helper
/usr/libexec/dbus-daemon-launch-helper
/usr/libexec/spice-client-glib-usb-acl-helper


After some learning I know they are assistant program and should not be called by user directly.
But how does linux prevent a malicious user do that?
Is there some check in these program?
Back to top
View user's profile Send private message
Ant P.
Watchman
Watchman


Joined: 18 Apr 2009
Posts: 6920

PostPosted: Tue Jan 22, 2013 5:08 pm    Post subject: Reply with quote

You could read the source to find out, or just look at their actual permissions and see that they're limited to being run by specific user groups.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum