Matt, Are you aware that practically every security alert for Linux recommends that the suid bit be turned off in ping because of security exploits?
The LSB test simply says its wrong to have suid turned off; but that is clearly an option of any sensible system administrator. For a non-networked, home user, it wont matter; but the LSB has to take into account the many different security requirements of a Linux installation. Dont you think its a bit ridiculous to specify in the LSB that you *must* have the suid bit turned on? Ken Burrell [EMAIL PROTECTED] Matt Wilson wrote: > > On Tue, May 14, 2002 at 11:21:20AM -0700, [EMAIL PROTECTED] wrote: > > For security purposes, we removed the suid bit on our /bin/ping program and > > the /tset/LSB.fhs/root/bin/bin-tc 45 test now fails. > > Is there a reason the suid bit is expected to be set for /bin/ping? > > Erm, it's useless for non-root users without setuid root? (you have > to have the capability of getting a raw socket, which requires > elevated privileges) > > Cheers, > > Matt -- Ken Burrell High Performance Computing Project Manager, R&D MSC.Software Corporation voice: (714)445-5612 2 MacArthur Place fax: (714)784-4116 Santa Ana, CA 92707 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with subject of "unsubscribe". Trouble? Email [EMAIL PROTECTED]
