On Fri, May 27, 2005 at 12:09:47PM +0100, Joe Orton wrote: > Here's the diff of changes in setuid apps since FC3: [...] > -/usr/bin/newgrp root root -rws--x--x > +/usr/bin/newgrp root root -rwsr-xr-x Hmmmm -- seems like keepin' em non-readable isn't a huge gain in the days of open source, but still, is there a reason *not* to do it? > +/usr/bin/screen root utmp -rwxr-sr-x Isn't there 'utempter' to deal with this? [...] > +/usr/bin/sudoedit root root ---s--x--x I think this is just a hardlink to the existing sudo program: -e The -e (edit) option indicates that, instead of running a command, the user wishes to edit one or more files. In lieu of a command, the string ``sudoedit'' is used when consulting the sudoers file. If the user is authorized by sudoers the following steps are taken: 1. Temporary copies are made of the files to be edited with the owner set to the invoking user. 2. The editor specified by the VISUAL or EDITOR environment variables is run to edit the temporary files. If neither VISUAL nor EDITOR are set, the program listed in the editor sudoers variable is used. 3. If they have been modified, the temporary files are copied back to their original location and the temporary versions are removed. -- Matthew Miller mattdm@xxxxxxxxxx <http://www.mattdm.org/> Boston University Linux ------> <http://linux.bu.edu/> Current office temperature: 73 degrees Fahrenheit.
