On Sun, Aug 17, 2003 at 10:34:22AM +0200, Christian Sch?fer wrote: > > If you are certain you aren't going to run anything that puts suid code > > in /var, then add nosuid there. > how can I determine if there is suid code put into /var ? 'find /var -perm +6000 -type f' Will return a list of all setuid and setgid files in /var.
> > qmail, vpopmail and a few other programs do put suid code in /var, so I > > don't suggest it by default. > is there a way to configure them to some other behaviour? Due to their design, unfortunetly no. I've tried moving them to other locations symlinking back, but I haven't had much luck in doing that. In theory, I believe all of their binaries belong in /usr/sbin. -- Robin Hugh Johnson E-Mail : [EMAIL PROTECTED] Home Page : http://www.orbis-terrarum.net/?l=people.robbat2 ICQ# : 30269588 or 41961639 GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85
pgp00000.pgp
Description: PGP signature
