stackoom
  简体   繁体   中英

setegid() in a suid-root binary in C

 原文  2014-09-26 14:12:49       c/ system-calls/ setuid

Question

Good evening, I am trying to write a suid-root binary in C and I have stumbled across the following problem: I execute it as a non-privileged user user1 and I am able to use setuid/seteuid to change to any user id I want. The problem is that I can't do that with effective group ids. Part of code: 

if ( setegid(VariableID) == -1 ) {
    perror("setegid failed");
    exit(1);
}

and this returns: 

setegid failed: Operation not permitted

Please note that I can successfully change group IDs between root(0) and the user that executes the binary but I can't change to other groups. Shouldn't this be possible since the binary is suid-root like the UID/EUID?

1 answers

solution1
 0 ACCPTED  2014-09-26 14:30:59

The answer (thanks Ingo Leonhardt) is that you need to change the group id before the user id. It kind of makes sense now.. :)

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Root-SUID C wrapper debugging Run program as root using SUID How to set the SUID bit to grant root privileges? Setting up SUID in C language is not enough Run SUID C scripts under Apache Insert value to binary tree root in C Save C binary tree root value in variable Using binary search to find the square root of a number in C -SUID- Can't run a “-rwsr-xr-x” file as root Executable file set root suid, but access(path, W_OK) still return -1?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM