https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575679#M858360 Thanks Guys,<BR /><BR />I am trying to recover files owned by the ingres user as the ingres user. I understand the security implecations of letting users recover other users suid programs but what is the problem with recovering your own? Thu, 06 Sep 2001 07:51:50 GMT Chris Evans_1 2001-09-06T07:51:50Z https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575676#M858357 Hi all,<BR /><BR />I am suffering a little at the moment with a problem using frecover.<BR /><BR />As root I can frecover any file with the suid bit set but as a non root user the file is recovered with just the execute bits set. Is this the standard behaviour? Am I doing something stupid? <BR /><BR />I have tried this on 10.20 and on 11.00 so I don't think it is a patch level problem. Wed, 05 Sep 2001 15:19:02 GMT https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575676#M858357 Chris Evans_1 2001-09-05T15:19:02Z https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575677#M858358 Chris,<BR /><BR />It makes perfect sense to me frecover not recovering SUID programs for ordinary user. So the case, I can restore an SUID program from the back myself and become a super user.<BR /><BR />I believe it's a feature of frecover though officially I am not sure :-)<BR /><BR />-Sri Wed, 05 Sep 2001 15:26:24 GMT https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575677#M858358 Sridhar Bhaskarla 2001-09-05T15:26:24Z https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575678#M858359 Hi Chris,<BR /><BR />This is perfectly normal behavior otherwise there would be a huge security problem. In fact, try this: Create a file my.exe owned by root and make it 4755 \via chmod. Nexp cp -p my.exe my2.exe as an ordinary user. You will see that the setuid bit is cleared in the copy.<BR />If it worked any other way, it would be trivially easy for any user to create a setuid program owned by root.<BR /><BR /><BR /> Wed, 05 Sep 2001 17:19:06 GMT https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575678#M858359 A. Clay Stephenson 2001-09-05T17:19:06Z https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575679#M858360 Thanks Guys,<BR /><BR />I am trying to recover files owned by the ingres user as the ingres user. I understand the security implecations of letting users recover other users suid programs but what is the problem with recovering your own? Thu, 06 Sep 2001 07:51:50 GMT https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575679#M858360 Chris Evans_1 2001-09-06T07:51:50Z https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575680#M858361 <BR />fbackup / frecover seem not to support non-root users quite well. (I get a "fbackup(1010): semget failed for the semaphore" if I try fbackup).<BR /><BR />You can use tar -px to recover the setuid bit of a file owned by yourself. I do not see a security hole there, because it is possible to set the bit to the original file as well. cp -p works this way, too.<BR /><BR />Klaus Thu, 06 Sep 2001 08:29:20 GMT https://community.hpe.com/t5/operating-system-hp-ux/frecovering-suid-programs/m-p/2575680#M858361 Klaus Crusius 2001-09-06T08:29:20Z