SBDavid
May 24th, 2012
May 24th, 2012
How to find Unauthorized SUID/SGID System Executables and fix them
How to find Unauthorized SUID/SGID System Executables and fix them.
The following command discovers and prints any setuid or setgid files on local partitions. Run it once for each local partition PART:
# find PART -xdev \( -perm -4000 -o -perm -2000 \) -type f -print
If the file does not require a setuid or setgid bit as discussed below, then these bits can be removed with the command:
# chmod -s file
