Bug 46769 - ping6 and traceroute6 should be setuid
ping6 and traceroute6 should be setuid
Status: CLOSED RAWHIDE
Product: Red Hat Linux
Classification: Retired
Component: iputils (Show other bugs)
7.1
i386 Linux
medium Severity medium
: ---
: ---
Assigned To: Phil Knirsch
Aaron Brown
: FutureFeature
: 23792 (view as bug list)
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2001-06-30 06:53 EDT by Pekka Savola
Modified: 2015-03-04 20:09 EST (History)
1 user (show)

See Also:
Fixed In Version:
Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2001-06-30 06:54:02 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Pekka Savola 2001-06-30 06:53:59 EDT
ping6 and traceroute6  are are installed setuid root as their ipv4 equivalents
are.

These should be done.

Root privileges are dropped very early, as early as in ping and traceroute, so
this creates no additional security problems.
Comment 1 Phil Knirsch 2001-07-02 05:41:21 EDT
Erh, yes, like 2 lines into main the setuid() call is done. Thats good enough
for me, so i'll include the changes.

Is/usr/sbin/ping6 ok as place or should it be moved to the same location as ping
(/bin)? It's not used by any of the 'standard' network-scripts nor by any of the
initscripts, so i guess /usr/sbin is fine.

Read ya, Phil
Comment 2 Pekka Savola 2001-07-02 05:50:51 EDT
Under /usr is fine for now I think.

Another issue is whether these would have to be moved to /usr/_bin_, as they're
setuid executable by users.  That's what some people think FHS requires. 
There's a pr# about that under traceroute.
Comment 3 Pekka Savola 2001-09-14 01:33:51 EDT
*** Bug 23792 has been marked as a duplicate of this bug. ***

Note You need to log in before you can comment on or make changes to this bug.