HPE Community
Operating System - HP-UX
1833865 Members
2114 Online
110063 Solutions
New Discussion

Re: A question about one option of mount_cdfs

 
Wang,MinJie
Super Advisor

‎01-31-2007 07:19 PM

‎01-31-2007 07:19 PM

A question about one option of mount_cdfs

Hi all
I consulted the man page of mount_cdfs and found that there is a parameter can follow the option "-o". The parameter is "nosuid". According to the manpage it's used to "Do not allow set-user-ID execution" and I don't get it.
Can you give me any advice?
Thx in advance
0 Kudos
Reply
3 REPLIES 3
Steven E. Protter
Exalted Contributor

‎01-31-2007 07:38 PM

‎01-31-2007 07:38 PM

Re: A question about one option of mount_cdfs

Shalom,

It denies the user to set the user id.

Without this protection you can have a nasty peice of code execute setting the user id to root.

This would be bad,violating basic security.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Peter Godron
Honored Contributor

‎01-31-2007 08:50 PM

‎01-31-2007 08:50 PM

Re: A question about one option of mount_cdfs

Hi,
if you want to have a bit of background on setting setuid (not just NFS mounted):
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=790229
0 Kudos
Reply
perumal_2
Frequent Advisor

‎01-31-2007 09:37 PM

‎01-31-2007 09:37 PM

Re: A question about one option of mount_cdfs

Hi

What do you mean by "I don't get it"
mount -F cdfs -o nosuid /dev/dsk/c0t0td0 /cdrom
By using the above command did it throw any error?.

FYI: suid will be more intersting for individaul executable files which runs the privilege of the owner than the process creator.
TQ
Perumal
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.