Welcome to the Linux Foundation Forum!

Is this a valid point out "setuid programs owned by root can be a security problem."?

At lesson 03 Processes - Process Attributes we are taught about setuid and at the end of 3rd phrase, it is written and I quote "setuid programs owned by root can be a security problem."
If we do a list on the /usr/bin/ directory, we can see that there are some programs which are marked with the "s" execute bit and the owner is the "root".

Best Answer

Answers

Categories

Upcoming Training