[ubuntu-hardened] Removing suid root from binaries where it isn't needed
Jeff Schroeder
jeffschroed at gmail.com
Wed Oct 31 14:57:40 GMT 2007
On 10/31/07, Kees Cook <kees at ubuntu.com> wrote:
> Can someone make a matrix of setuid applications that need this
> investigation? Maybe at
> https://wiki.ubuntu.com/Security/Investigation/Setuid
>
> With that we can build our checklist and see what needs either derooting
> or fscap work.
A basic outline has been created on that wikipage. If the table is too
simple, edit it but from your email, that looks good. Once I'm in the
office it will expand quite a bit.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
More information about the ubuntu-hardened
mailing list