HPE Community
Operating System - HP-UX
1833882 Members
2025 Online
110063 Solutions
New Discussion

setuid file question

 
SOLVED
Go to solution
dictum9
Super Advisor

‎04-13-2006 08:48 AM

‎04-13-2006 08:48 AM

setuid file question


If the file has the ownership of:

-rwSr-----

As far as I understand, that "S" means it's setuid, but what is the point of having setuid if nobody else can execute the file?

0 Kudos
Reply
6 REPLIES 6
A. Clay Stephenson
Acclaimed Contributor

‎04-13-2006 09:00 AM

‎04-13-2006 09:00 AM

Solution

Re: setuid file question

Actually 'S' as opposed to 's' indicates that no execute bit is set so that this is not, if fact, an executable but a data file. ie. the mode of the file is 4640 rather than 4740. In this case because this is a data file rather than an executable, the setuid bit may be serving as a flag for the application as it has no significance in any other context.
If it ain't broke, I can fix that.
Reply
Rodney Hills
Honored Contributor

‎04-13-2006 09:31 AM

‎04-13-2006 09:31 AM

Re: setuid file question

FYI- And if this is a directory it has a special meaning. If any user could create files under the directory the "S" specifies that only the owners of a file can delete them.

Rod Hills
There be dragons...
Reply
A. Clay Stephenson
Acclaimed Contributor

‎04-13-2006 09:36 AM

‎04-13-2006 09:36 AM

Re: setuid file question

Except that it's not a directory and a directory would be especially useless without the search bit enabled for the owner.
If it ain't broke, I can fix that.
Reply
A. Clay Stephenson
Acclaimed Contributor

‎04-13-2006 09:42 AM

‎04-13-2006 09:42 AM

Re: setuid file question

Oh, and even if it were a directory, it's the "sticky" bit (octal 1000) that applies as opposed to the setuid bit (octal 4000). Sorry, Rodney.
If it ain't broke, I can fix that.
Reply
dictum9
Super Advisor

‎04-14-2006 05:30 AM

‎04-14-2006 05:30 AM

Re: setuid file question

> the setuid bit may be serving as a flag for the application


What do you mean by that?
0 Kudos
Reply
James R. Ferguson
Acclaimed Contributor

‎04-14-2006 05:42 AM

‎04-14-2006 05:42 AM

Re: setuid file question

Hi:

The suggetion that "...the setuid bit may be serving as a flag for the application..." derives from a discussion last month wherein it was noted that the SUID bit could serve as a marker for a data file instead of its normal use to confer access rights for an executable. Follow the discussion here:

http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=1015500

Regards!

...JRF...

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.