GitHub

mdittmer/unix-process-identity

This repository contains a snapshot of code based on The UNIX Process Identity Crisis: A Standards-Driven Approach to Setuid by Mark S. Dittmer and Mahesh V. Tripunitara. The first-order logic ...
GitHub

RFE: unix_chkpwd without setuid

I am quite interested in making basic Linux userspace work without setuid binaries, so that we can set NoNewPrivs in PID 1 early on and remove an entire class of security issues. This works relatively ...
maketecheasier.com

How Setuid Allows Users to Run Files with Escalated Privileges

When you run an executable file in Linux, it usually runs with the current user and group ID. However, there are times when you need to run that file as another user (like root). Instead of switching ...
www.cs.cmu.edu

Setuid Scripts

Perl is designed to make it easy to write secure setuid and setgid scripts. Unlike shells, which are based on multiple substitution passes on each line of the script, perl uses a more conventional ...
USENIX

Fixing Races for Fun and Profit: How to use access(2)

It is well known that it is insecure to use the access(2) system call in a setuid program to test for the ability of the program's executor to access a file before opening said file. Although the ...