why does redhat not make ksu setuid root?

Sam Hartman hartmans at MIT.EDU
Fri Jul 19 12:17:39 EDT 2002


>>>>> "Avery" == Avery  <daemon2k at yahoo.com> writes:

    Avery> Why would redhat make ksu (at least in the 7.2 distro)
    Avery> _not_ setuid root?  kinda pointless for root to be the only
    Avery> user who can ksu.

Perhaps they are not confident in its security.
It is a rather complex program for what it does.



More information about the Kerberos mailing list