On Thu, Oct 12, 2000 at 03:26:54PM -0700, David Knight French wrote:
> Actually, it is a problem with any suid program that
> brings remote things down to a local machine.
i'd like to point out again, that scp is not a suid program
and that the problem is not at all related to suid programs.
it does not matter whether /usr/bin/ssh has the sbit set
or not.
the problem is that the remote scp can tell the local scp to
create this and that file and set this or that permission
for the file. the local scp does _not_ check whether the filenames
match with the file names given on the command line.
moreover, scp can (like any other program running under your uid)
set the sbit for files _you_ are owning. THIS is NOT about setting
the ROOT SBIT if scp is run by a ordinary user.
hope this helps,
-markus
