Security :: Remove The Suid Bits From All Programs?
Jan 20, 2010
I've searched the forum, but nothing answers my question. We know the security risk posed by suid, sgid.I'm looking to remove the suid bits from all programs that do not absolutely need it.
This command:
find / -type f ( -perm -04000 -o -perm -02000 ) -exec ls -lg {} ;
gave the list below.
For which of these programs can I safely remove the suid bit? I don't want to break my system by modifying a program that the system needs.
-r-sr-xr-x 1 bin 502172 Jan 10 12:36 /usr/local/bin/dccproc
-r-sr-xr-x 1 bin 186683 Jan 10 12:36 /usr/local/bin/cdcc
-r-s--x--x 1 root 23980 Nov 17 00:27 /usr/lib/virtualbox/VBoxNetDHCP
-r-s--x--x 1 root 9896 Nov 17 00:27 /usr/lib/virtualbox/VBoxNetAdpCtl
-r-s--x--x 1 root 23976 Nov 17 00:27 /usr/lib/virtualbox/VBoxSDL
I say to remove access to MOST of these SUID binaries? do they all need this power? what i want to do is minimize access just incase one of them gets an exploit(as ive already done for apache SuEXEC)
I'm quite new to linux and I recently (and courageously) upgraded the computer of my work from opensuse 11.0 32bits to opensuse 11.2 64bits.
Well, everything would be quite fine except that I still have some softwares 32 bits that have the 64 bits version available. I know that because, using YaST, I can see by the Installed software section that there are 'choices' of versions for some programs; these versions are 'i586' and 'x86_64', and many of them have the i586 version installed.
So, I wonder if there is some type of auto upgrade all programs which are i586 and have the matching x86_64 avaliable...
when I reformat ubuntu, I use AptonCD to save packages and then restore them without downloading anything over again. what I want to know is: I have the 32 bits ubuntu installed and then I downloaded the 64 bits version. If i reformat to the 64 bits one, would the DVD saved aptoncd packages from the 32 bits work on the 64 bits installation?
I am wondering if I can install a 32 bits guest Windows XP in VirtualBox in my 64 bits Ubuntu Natty host? I need a 32 bits Windows to run some programs.
I just create a vm image with 2 CPUs to be used on a one CPU machine. it works great. Now, i am thinking about creating a 64 bits Redhat VM image to be run on my 32 bits machine. Is that possible?
I am looking for a way to keep a log and make if then statements if a line exitsts in the log. I also am looking for a way to make a simple loop, like goto line number, and I also am wondering how to add/remove bits of text from a text file (plugins line in server.properties)
When using "Add/remove software" application, I only can check packagesh are not installed, I can't choose installed packages which I want to remove, there is no check box in front of their names.So now I have to remove packages with yum. How can I remove packages in this GUI application
About 7 years ago I setup a Redhat system with 8 serial terminals and 8 serial printers, this is still running but I need to get another system running so the original can be taken down for maintenance. The printers are ancient Newbury data dot matrix wide carriage with 7 data bits receive 8 data bits transmit Xon/Xoff flow control. Now I remember setting the transmit and receive data bits as above but after 7 years can't remember where.
I don't like KDE's program (like Amarok or Vlc or kaffein and any KDE's program) cus i think KDE's programs are mane argument to slow down speed of my ubuntu.
I'd rather a absolute gnome's environment without any KDE efficacious.
I'd rather to remove all KDE's program from my source.list if possible.
i use ubuntu with gnome environment but i installed kde to try it , i find not interesting , i want to remove kde , i try to remove kde but not success , i want to remove it WIT his program ,OR What the best way to remove kde environment full with his program.
I'm a new Fedora user and I having difficulty with the product.I downloaded both the live cd and dvd of F13. I installed F13 from the live cd and after it completed I created my user name and then rebooted. Once I logged in I went to Administration -> add/remove program. I then clicked on package collections and ticked off the ones that I wanted. I then clicked on the APPLY button and I noticed that in the lower left corner of the screen (below the left panel and just above the Help button) it said Running and then nothing. If I attempt to close the screen it says that all selections will be lost. I also went back and set the filter to list "all installed" and the programs that I had selected were in the list.I then decided to try the dvd iso, so I blew everything away and installed F13 from there, but I encountered the same thing.So I'm at a loss what I'm doing incorrectly
how do i clear autostart? i've unchecked everything i don't need in "startup applications" but still after reboot i get everything running. i cleared ~./config/autostart but after reboot there appear all the default startup applicatons. What should i do?and is there a way to remove volume indicator from indicator menu?
I just installed Fedora 13 today, everything is working including the internet. However, when I try to get more programs it says that it cannot find the sources, and a cache reload will fix it. I wasn't sure at first what that ment, being a begginer, but I think it means going into system-refresh package lists. So I do that,ut it still wont give me the program list. I'm really confused, I come from using windows computers and I don't know what to do now, me be a little clearer, when I click on one of the catagores to find software, nothing comes up but the defalt packages that come with the system. I go into the system-Software menu, and there are no boxes cheked. I thought that this maybe to problem, so I try to cheak the top box labled without parentheses "Fedora 13 - 1386". It tells me to authenticate my action and tells me to type the root password, I do this. Then it shows the screen below. I'm running a 32 bit system,
Why is Add/remove programs in Fedora 14 not working? It is not showing any packages. I am a newbie to Fedora. Also some basic tweaks that should be done immediately after installing fedora.
I am coming from Kubuntu 10.10, which is a Debian based OS. I am used to going into the terminal and typing sudo apt-get install or sudo apt-get remove to install and remove programs. I know it is the hard way to do it, but I find it gave me more flexibility. So how do I do this in openSUSE 11.3? Or can I even install things through terminal? What is the command? I know there is YaST but I also want to learn how to use the terminal
I'm unable to change startup programs. If I try and add or remove a program, any changes I have made seem to undo themselves. I suspect it might have something to do with being unable to save the session, but I really don't have a clue.
Just in case it makes a difference: I'm actually running Mint (Helena).
I am using ubuntu 10.4 and cannot find add/remove programs in applications at all, it just isn't listed there. Is there anyway for me to download it. I've looked in software centre and cannot see it.
So a few years ago I had a guy build me a computer that solely run off Ubuntu. Was a gift to me dad and all was well...my dad just gave me the computer and there are too many problems and I am not exactly good with this kind of work.
I really just want to completely uninstall Linux so I can get windows xp on this laptop. I don't even know where to start, any ideas?
Unless of course someone can give me a crash course on how to fix me being able to download updates so that I can actually add/remove programs, get my DVD to read DVDs and many many more ridiculous things...
I tried installing the latest Mupen64Plus from source, and something went wrong, and now I get errors when trying to run it. How do I remove the link that was created from the source install?
Want to remove programs with no explanations on how to use so used pkgtool to remove gxine, xine, and xmms. When I try to remove juK or Dragon Player, they do not show up in pkgtool list. Dragon Player will not now run from the multimedia list and JuK can't run after starting because it is missing files which were removed by pkgtool above. How do I now go about finding and removing these last two?
Installed Fedora 14 32-bit with gnome on an older laptop for my son (want to start him early learning multiple OS's). the wireless card is not working (don't know why yet) but in the mean time I wanted to just add/remove software right from the installation media (full DVD). However, when I open system -> administration -> add/remove software, nothing is available. Trying to enable any of the sources listed under software sources tries to use the internet, which I don't have up yet and I don't see any option to add a new source... although I don't know why adding software from the install media would not be an available option by default?So how do I add/remove software from the install media using this add/remove software management tool? I don't want to have to browse the dvd directly for packages, I want to browse by the nice categories and have any dependencies taken care of for me... and the searching capability is nice to
