SUID set and owned by root

Some files require root permissions to execute properly. The SUID setting forces files to run with the same permissions as their owner, which ensures that programs like su will always have the correct permissions.

In general, SUID should be avoided due to a potential security risk that would occur if an unauthorized user modifies such a file to delete, access, or change sensitive files. As such, no files with the SUID set and owned by root should have global write permissions.

It is normal to see system files, such as su, at, cron, chkey, etc. in this list. Raise an exception only when you spot non-system files or files with loose write permissions.

Further discussion on this topic is available at the following websites:

Unix.com.au

Rutgers.edu

Please click here to ask Chris for guidance on this test or the results that you received.

2-10

	New
Active Directory Date Converter
Unix Timestamp Date Converter
Unix Security Analyzer
Windows Security Analyzer
NIST SP 800-63 password policy compliance checker

	Sponsors

	News: Schneier
Parental Fears vs. Realities Consumerization and Corporate IT Security Terrorism Entrapment UAE Man-in-the-Middle Attack Against SSL Successful Attack Against a Quantum Cryptography System

	News: SecurityFocus
News: Change in Focus News: Twitter attacker had proper credentials News: PhotoDNA scans images for child abuse News: Conficker data highlights infected networks Brief: Google offers bounty on browser bugs

	News: CBC
2 asteroids fly near Earth Teens' styrofoam study wins water prize Google debuts Instant predictive search engine Bay of Fundy may get world's largest turbine Mobilicity files complaint about Rogers' Chatr

	News: CNN
Google launches 'Instant' search Stop those boneheaded Facebook comments Call 911? Maybe not from a cell phone 5 just-plain-weird video games

	Statistics

	Farmington, CT

	Edmonton, AB

	Oakland, CA