diff options
author | glebius <glebius@FreeBSD.org> | 2005-01-13 15:07:35 +0000 |
---|---|---|
committer | glebius <glebius@FreeBSD.org> | 2005-01-13 15:07:35 +0000 |
commit | f044db930e9c1bbc3bcf011447335f869a3ec844 (patch) | |
tree | 32736d297e0442b6f88555350671279a51cc4679 /etc | |
parent | 1ad9577d5d35b8f681179241c00d9f40a0a2f61e (diff) | |
download | FreeBSD-src-f044db930e9c1bbc3bcf011447335f869a3ec844.zip FreeBSD-src-f044db930e9c1bbc3bcf011447335f869a3ec844.tar.gz |
Don't do setuid checks on file systems mounted with noexec option.
Reviewed by: brian, ru
MFC after: 1 week
Diffstat (limited to 'etc')
-rwxr-xr-x | etc/periodic/security/100.chksetuid | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/etc/periodic/security/100.chksetuid b/etc/periodic/security/100.chksetuid index f5b5f82..789914a 100755 --- a/etc/periodic/security/100.chksetuid +++ b/etc/periodic/security/100.chksetuid @@ -44,7 +44,7 @@ case "$daily_status_security_chksetuid_enable" in echo "" echo 'Checking setuid files and devices:' # XXX Note that there is the possibility of overrunning the args to ls - MP=`mount -t ufs | grep -v " nosuid" | awk '{ print $3 }' | sort` + MP=`mount -t ufs | egrep -v " no(suid|exec)" | awk '{ print $3 }' | sort` if [ -n "${MP}" ] then set ${MP} |