Maybe I'm missing something here, but if at is compromised before dropping privileges, and is running as daemon, can't it just chmod the file to whatever it wants since it's the owner?
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/972824 Title: /usr/bin/at should perhaps be permissioned 6555 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/at/+bug/972824/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
