View previous topic :: View next topic |
Author |
Message |
fpemud Guru
Joined: 15 Feb 2012 Posts: 349
|
Posted: Tue Jan 22, 2013 1:32 pm Post subject: security question about suid program in /usr/libexec |
|
|
I found there're some suid programs in /usr/libexec:
Code: | [fpemud@fpemud-workstation ~]$ find /usr/libexec -perm +4000
/usr/libexec/pulse/proximity-helper
/usr/libexec/dbus-daemon-launch-helper
/usr/libexec/spice-client-glib-usb-acl-helper
|
After some learning I know they are assistant program and should not be called by user directly.
But how does linux prevent a malicious user do that?
Is there some check in these program? |
|
Back to top |
|
|
Ant P. Watchman
Joined: 18 Apr 2009 Posts: 6920
|
Posted: Tue Jan 22, 2013 5:08 pm Post subject: |
|
|
You could read the source to find out, or just look at their actual permissions and see that they're limited to being run by specific user groups. |
|
Back to top |
|
|
|