Stephen F. Bosch [mailto:[EMAIL PROTECTED]] wrote:
>Have you tried writing a shell script called "ps" and put it in your
>path? You could try setting it SUID root and have it in directory that
>appears early in your path (before the path where the real ps is located
If you're going to shoot yourself in the foot, use a small caliber weapon.
I would strongly suggest that you eradicate the concept of SUID shell script
from your mind. Particularly since the topic of discussion involves
increasing the security of a multiuser system.
I don't think it's impossible to write an SUID shell script that wouldn't
lead to a root exploit, but I don't think anyone below the level of Senior
Unix God should attempt it.
