emo/busybox
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Improve the setuid situation a bit, and make it more apparent

Browse Source 
when people really ought to make busybox setuid root.
 -Erik
This commit is contained in:
Eric Andersen 2004-08-26 23:13:00 +00:00
parent 37ba6bfb6d
commit 138791050d
3 changed files with 29 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
Makefile
View File

@ -57,6 +57,16 @@ busybox.links: applets/busybox.mkll include/config.h
install: applets/install.sh busybox busybox.links install: applets/install.sh busybox busybox.links
$(SHELL) $< $(PREFIX) $(SHELL) $< $(PREFIX)
ifeq ($(strip $(CONFIG_FEATURE_SUID)),y)
@echo
@echo
@echo --------------------------------------------------
@echo You will probably need to make your busybox binary
@echo setuid root to ensure all configured applets will
@echo work properly.
@echo --------------------------------------------------
@echo
endif
uninstall: busybox.links uninstall: busybox.links
rm -f $(PREFIX)/bin/busybox rm -f $(PREFIX)/bin/busybox

16
loginutils/Config.in
View File

@ -69,9 +69,13 @@ config CONFIG_FEATURE_U_W_TMP
config CONFIG_LOGIN config CONFIG_LOGIN
bool "login" bool "login"
default n default n
select CONFIG_FEATURE_SUID
help help
login is used when signing onto a system. login is used when signing onto a system.
Note that Busybox binary must be setuid root for this applet to
work properly.
config CONFIG_FEATURE_SECURETTY config CONFIG_FEATURE_SECURETTY
bool " Support for /etc/securetty" bool " Support for /etc/securetty"
default y default y
@ -84,19 +88,27 @@ config CONFIG_FEATURE_SECURETTY
config CONFIG_PASSWD config CONFIG_PASSWD
bool "passwd" bool "passwd"
default n default n
select CONFIG_FEATURE_SUID
help help
passwd changes passwords for user and group accounts. A normal user passwd changes passwords for user and group accounts. A normal user
may only change the password for his/her own account, the super user may only change the password for his/her own account, the super user
may change the password for any account. The administrator of a group may change the password for any account. The administrator of a group
may change the password for the group. may change the password for the group.
Note that Busybox binary must be setuid root for this applet to
work properly.
config CONFIG_SU config CONFIG_SU
bool "su" bool "su"
default n default n
select CONFIG_FEATURE_SUID
help help
su is used to become another user during a login session. su is used to become another user during a login session.
Invoked without a username, su defaults to becoming the super user. Invoked without a username, su defaults to becoming the super user.
Note that Busybox binary must be setuid root for this applet to
work properly.
config CONFIG_SULOGIN config CONFIG_SULOGIN
bool "sulogin" bool "sulogin"
default n default n
@ -107,9 +119,13 @@ config CONFIG_SULOGIN
config CONFIG_VLOCK config CONFIG_VLOCK
bool "vlock" bool "vlock"
default n default n
select CONFIG_FEATURE_SUID
help help
Build the "vlock" applet which allows you to lock (virtual) terminals. Build the "vlock" applet which allows you to lock (virtual) terminals.
Note that Busybox binary must be setuid root for this applet to
work properly.
comment "Common options for adduser, deluser, login, su" comment "Common options for adduser, deluser, login, su"
depends on CONFIG_ADDUSER || CONFIG_DELUSER || CONFIG_LOGIN || CONFIG_SU depends on CONFIG_ADDUSER || CONFIG_DELUSER || CONFIG_LOGIN || CONFIG_SU

3
miscutils/Config.in
View File

@ -15,6 +15,7 @@ config CONFIG_ADJTIMEX
config CONFIG_CROND config CONFIG_CROND
bool "crond" bool "crond"
default n default n
select CONFIG_FEATURE_SUID
help help
Crond is a background daemon that parses individual crontab Crond is a background daemon that parses individual crontab
files and executes commands on behalf of the users in question. files and executes commands on behalf of the users in question.
@ -23,6 +24,8 @@ config CONFIG_CROND
$ cat /var/spool/cron/crontabs/root $ cat /var/spool/cron/crontabs/root
# Run daily cron jobs at 4:40 every day: # Run daily cron jobs at 4:40 every day:
40 4 * * * /etc/cron/daily > /dev/null 2>&1 40 4 * * * /etc/cron/daily > /dev/null 2>&1
Note that Busybox binary must be setuid root for this applet to
work properly.
config CONFIG_FEATURE_CROND_CALL_SENDMAIL config CONFIG_FEATURE_CROND_CALL_SENDMAIL
bool " Using /usr/sbin/sendmail?" bool " Using /usr/sbin/sendmail?"