HPE Community
Operating System - HP-UX
1834513 Members
1906 Online
110068 Solutions
New Discussion

Re: Can I change the suid bit?

 
SOLVED
Go to solution
Carme Torca
Super Advisor

‎09-18-2008 02:19 AM

‎09-18-2008 02:19 AM

Can I change the suid bit?

Hi,

There are a lot of commands with suid bit.
What it is used for?. Could I change it to have for security?

# ls -l /usr/sbin/ping
-r-sr-xr-x 1 root bin 32768 Oct 17 2006 /usr/sbin/ping

Thanks!
Carmen.
Users are not too bad ;-)
0 Kudos
Reply
5 REPLIES 5
Ivan Krastev
Honored Contributor

‎09-18-2008 02:28 AM

‎09-18-2008 02:28 AM

Solution

Re: Can I change the suid bit?

Better do not touch the default setuid programs. See more ifo about all mechanism here - http://en.wikipedia.org/wiki/Setuid

regards,
ivan
Reply
sreekanthtm
Trusted Contributor

‎09-18-2008 02:34 AM

‎09-18-2008 02:34 AM

Re: Can I change the suid bit?

Default hpux files with suid bit will not have write permission to anybody. So only root can do some drstic change in the system. And the commands with suid set is a trusted command; means ' The command will do only, what it suppose to do'.
So don't worry about the default commands with suid bit.
Reply
Sandeep_Chaudhary
Trusted Contributor

‎09-18-2008 02:51 AM

‎09-18-2008 02:51 AM

Re: Can I change the suid bit?

do not change suid bit.
The suid bit is use to run particular program with owners credentials. Thats the reason anyone can execute that program though it is owned by root
0 Kudos
Reply
Jeeshan
Honored Contributor

‎09-18-2008 03:13 AM

‎09-18-2008 03:13 AM

Re: Can I change the suid bit?

If you talk about SUID bit, "chmod u+s", this means that a program will run with the privileges of the owner of the file instead of the user who runs the program.

For example, if /bin/rm is owned by root, without SUID bit, if user1 runs the command /bin/rm -fr /root, it will run as user1, and he won't be able to delete the files in /root as user1 has no permissions.

If /bin/rm is owned by root, and it has SUID bit enabled, if user1 runs the command /bin/rm -fr /root, it will run as "root" (the owner of the program), and will be able to delete the /root directory.

If you want to change the SUID, be aware to track what u are changing.
a warrior never quits
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎09-18-2008 03:49 AM

‎09-18-2008 03:49 AM

Re: Can I change the suid bit?

You cannot improve security by removing the suid bit on HP-supplied programs. They have been reviewed over 20 years to make sure that proper security measures are in place. If you were to remove the suid bit for ping, only root could use the command. If you remove it for login or passwd, then no one except can ever login again. You may have read a security article about suid but this only applies to user-created programs and scripts. This type of problem is very, very small when compared to the basic issues such as using telnet and ftp, not using Trusted or Advanced security on your system, or not providing a proper firewall.


Bill Hassell, sysadmin
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.