>I just discovered this:
>In Slackware, the permissions on the /usr/preserve directory are publically
>readable and the elvrec program is not suid root. What needs to happen
>of course is to set /usr/bin/elvrec to owner=root:bin, perms=1755 and
>/usr/preserve to perms=700.
>cak
>Geekium Rex
I would suggest setting up a group "elvis", setting elvrec, virec,
and elvprsv to owner bin:elvis, perms = 2755 and the directory /usr/preserve
to owner root:elvis perms = 1770. You can also accomplish the same thing by
setting up a user elvis (or whatever), and set
elvrec, virec, and elvprsv to owner elvis, perms = 4755
/usr/preserve owner elvis perms = 700
Making any user accessible program suid root is inherently dangerous, and
should be avoided as much as possible. I'm sure elvis is pretty safe, but the
above is probably a good idea if you are afraid anyone is going to try to
seriously hack with your system.
Just my $0.02
Dave
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
```````````````````````````````````````````````````````````````````````````````
_/_/_/_/ _/_/ _/_/ _/_/_/_/ David M. Del Signore
_/ _/ _/_/ _/_/ _/ _/ University of Toledo
_/ _/ _/ _/ _/ _/ _/ _/ Toledo, Ohio
_/ _/ _/ _/_/ _/ _/ _/
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
```````````````````````````````````````````````````````````````````````````````
by