On Wed, 10 Dec 2008 08:46:49 +0000 Tzafrir Cohen <[EMAIL PROTECTED]> wrote:
> On Tue, Dec 09, 2008 at 09:29:14PM -0500, Celejar wrote: > > > > chown root <some bad file> > > > > Harmless unless root chooses to run it (in which case it would be a > > problem regardless of which user he chown's it to), > > If it is executable and setuid then root didn't have to choose to run it. My original email explicitly assumed that we don't allow this for setuid files: "assuming we don't allow this to occur with suid executables, of course" > Tzafrir Cohen | [EMAIL PROTECTED] | VIM is Celejar -- mailmin.sourceforge.net - remote access via secure (OpenPGP) email ssuds.sourceforge.net - A Simple Sudoku Solver and Generator -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]