On Dec 30, 2007 11:13 AM, James Knott <james.knott at rogers.com> wrote: > Ari Yrj?l? wrote: > > hendrik at topoi.pooq.com writes: > > > > > >> That's bizarre. What security implications are there in ping that would > >> mean it has to be run only by root? Forcing people to use root when not > >> necessary is itself a security problem. > >> > > > > I guess ping requires root, because it's not a separate binary but > > included in busybox. /bin/ping is just a symlink to /bin/busybox, > > which is not setuid root, for obvious reasons. > > > > > > Others, such as vi and pwd also link to busybox, but can still be run by > user. vi and pwd do not require the use of raw sockets. John
