'ct' (fwd)

l41484@alfa.ist.utl.pt (l41484@alfa.ist.utl.pt)
Thu, 5 Nov 1998 19:57:51 +0100

Messages sorted by:[ date ][ thread ][ subject ][ author ]

This comes from the linux security audit list. 

---------- Forwarded message ----------
Date: Tue, 3 Nov 1998 22:10:01 +0000
From: Bob Tinsley <bob@earthrise.demon.co.uk>
To: security-audit@ferret.lmh.ox.ac.uk
Subject: 'ct'

pointless suid binary of the week?

[root@earthrise /root]# ls -l `which ct`
-rws--x--x   1 root     root         4363 Oct 29  1997 /usr/bin/ct

[root@earthrise /root]# rpm -qf `which ct`
mgetty-sendfax-1.1.9-3

strace, strings, and the size of the binary seem to indicate it does
nothing more than print "ct: not yet implemented" on stderr. Still,
dynamic-linker aside, at least it probably does it securely...
(Although I must confess to being too lazy to download and check the
source tonight.)

I also notice that this is suid in RH5.2 (courtesy of Jon Lewis' list).

Cheers,

	-- Bob