Solaris ff.core and wsinfo commands.

Bonfield James (jkb@mrc-lmb.cam.ac.uk)
Tue, 6 Dec 94 15:55:41 WET

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: James R. Ault: "Re: /dev/tcp, and a LD_LIBRARY_PATH question."
Previous message: Pat Myrto: "Re: Got this - not sure of authenticity. Better safe etc..."
Next in thread: John C. Orthoefer: "Re: Solaris ff.core and wsinfo commands."

Hello,

I recently did a find command on Solaris 2.3:

find /usr/openwin \( -perm -02000 -o -perm -04000 \) -ls

This shows a couple programs that I'm unfamilier with - ff.core and wsinfo. I
was appalled to find that BOTH of these segmentation faulted when I ran them.
Should we consider this normal behaviour for setuid and setgid programs!? I
think not...

Neither of them have manual pages that I can find. Shouldn't we be at least
told what the setuid and setgid programs on our systems are for?

I haven't seen any _obvious_ ways that these could be dangerous for security,
but I'm naturally suspicious of any setuid/setgid program that crashes. Has
anyone got any further info on these programs?

	James

Next message: James R. Ault: "Re: /dev/tcp, and a LD_LIBRARY_PATH question."
Previous message: Pat Myrto: "Re: Got this - not sure of authenticity. Better safe etc..."
Next in thread: John C. Orthoefer: "Re: Solaris ff.core and wsinfo commands."